WatchGuard Firebox Reviews

I'm using it in the banking sector only. Basically, I'm using it for security and other purposes, including data loss prevention. Security is the main purpose in banks.

Nowadays, we are using small models for SD WAN also, depending on security purposes. Basically, we have received a good return on investment.

The basic problem is that for every firewall in India, there is a need for a one-year or two-year subscription. That is the main issue for all users. Particularly in India, the cost for renewal after three years is 75% of the hardware cost, which is a significant problem.

I've been using VoiceBot for the last two years.

It's scalable for us. If we're going for more concurrent users, we need to change the entire box. In that case, they provide a discount for replacing the old box. I think it involves seven or eight users.

The technical support is good. Their distributor is in Mumbai, and they arrange everything about support. In case we need the same development PeerSpot or engineers on-site.

Neutral

It depends on the company, however, it usually takes about two hours, not more than that. I have a team of specialists for this, consisting of three people.

Only three or four people are involved. It relies on online support by remote access, not on-site visits.

I don't know the current cost. It's all imported products. It's not assembled in India. It's expensive us here.

Currently, I'm using WatchGuard. I'm also using pfSense in some cases.

The major problem is pricing and licensing loss. In India, the cost for renewal after three years is 75% of the hardware cost, which is a significant problem. Your review may be available to third parties and on third-party websites.

I'd rate the solution eight out of ten.

The WatchGuard Firebox is excellent for ensuring the security of remote workers, making it ideal for organizations with distributed teams or remote workforce setups.

It manages network traffic, serving as a fundamental component of the firewall.

WatchGuard excels in reporting and monitoring capabilities, offering comprehensive options for filtering and querying data. Their centralized console simplifies management for organizations with multiple Fireboxes. Instead of logging into each firewall individually, administrators can access and monitor their entire firewall infrastructure from a single IP address.

Certain features stand out as particularly effective for threat prevention, such as XDR (Extended Detection and Response) and MDR (Managed Detection and Response). These functionalities, although not inherent to Firebox, can be integrated seamlessly for existing WatchGuard customers. This integration offers significant benefits, as it streamlines security processes and eliminates redundancy that often occurs when using multiple security tools from different vendors.

The distribution and channel strategy, particularly in regions like Pakistan and Afghanistan, may hinder their visibility and adoption. Due to their lack of investment in marketing, channel development, and certifications, WatchGuard faces challenges in gaining visibility and market share, especially in regions like Pakistan. Unlike competitors such as Cisco and Fortinet, who offer extensive training and certifications for their partners, WatchGuard's limited focus in this area hinders their ability to attract technical talent and expand their customer base. To address this issue and improve its presence in the market, WatchGuard could consider offering free or low-cost certification programs to educate potential partners and customers on their technology. By empowering individuals with the necessary skills and knowledge, WatchGuard can create a network of brand ambassadors who can advocate for their solutions and drive adoption.

WatchGuard's offerings are invaluable and I believe they provide superior security solutions compared to Barracuda and Juniper. WatchGuard's products are versatile and suitable for a wide range of organizations from small to large, yet they may not be fully recognized in the enterprise sector due to messaging and marketing strategies that focus on small to medium-sized environments.

The initial setup is straightforward.

The product's simplicity and user-friendly interface require minimal assistance during configuration and deployment. Deployment time varies from customer to customer. For less complex use cases, the firewall can be deployed in just one day.

WatchGuard offers competitive pricing with attractive margins, benefiting both the company and its partners.

Overall, I would rate it eight out of ten.

The basic functionality is fantastic. It has been performing well. I generated a report on one machine, using that as the deployment machine. When scanning the network, it discovered machines on the network and deployed the same endpoint protection from that one machine I have on my network. 

I can see all of that from any cloud solution. So far, it has been really easy to install, deploy, and have visibility on the endpoints that I manage.

I'm just looking for a few extra features, which are likely included in XDR and the other additional software services. Mainly the FortiEDR system. If I go through the computer status and look at the risk, it's a very basic assessment. 

Compared to Rapid7, which is a highly rated vulnerability scanner,  WatchGuard is more limited. Rapid7 can give me vulnerabilities like autorun being enabled and provide solutions to fix them. It can also reassess vulnerabilities. 

However, the EDR Core I'm using only gives me basic information, like "File full of fire and execution detection" as a high vulnerability. It doesn't tell me how to fix it, just that it's a risk. It's very minimal in terms of risk assessment. Rapid7 would say, "This software is outdated," or "You're using an older version of SQL." It's much more detailed, whereas EDR Core is more scaled-down and doesn't provide a full assessment.

So, I'd like a few extra features, especially around threat severity assessment.

I have actually been using this for the past two weeks because I'm using it in a test environment before I deploy it into anything. 

I want to make sure that the features they are providing are what my client really wants. Regarding compliance, it really receives no complaints. 

So, with the EDR tool, which is what I currently use, I have deployed it in my business. I checked if it could gather my asset information, software information and scan my machines for any malware. So, that basic functionality is fantastic. 

It has been stable so far. I haven't noticed any performance impact on my machines. My only complaint is that I can't schedule scans. I can only see live monitoring of micro activity. I'd like to schedule scans at specific times, but maybe that feature is only available in higher subscription tiers.

I've only been using it for two weeks. I would like to see more features, especially with the addition of xDR or Endpoint Detection and Response Pro (EDR Pro). 

I'm still exploring what's available in my current plan. Once I understand everything better, I'll reach out to WatchGuard if I need additional features or clarification. 

However,  I requested a full cybersecurity overview from their sales department to explore all their solutions, including network asset management, penetration testing, etc. They'll recommend different subscription tiers based on my needs.

Fortinet is the main competitor, especially when considering firewall and firewall configuration. Microsoft Defender for Endpoint (MDE) is also in the mix, as some of our clients use it. These are competitors for a comprehensive security offering, not just antivirus. 

Other competitors who offer similar features like asset management would be Trellix, SentinelOne (formerly McAfee), Microsoft Azure Sentinel, and Palo Alto Networks Cortex XDR.

In my experience, WatchGuard shines in deployment simplicity, especially for firewalls and firewall configuration. The renewal process is also easier, and their documentation, support library, and overall support experience are excellent.

The initial setup was easy. It took ten minutes. I read the instructions. I downloaded the software and installed it on my machine in a minute, and it automatically showed up in the cloud console. 

It even identified other machines on the network and asked if I wanted to deploy protection to them. All I had to do was provide admin credentials and let it run. Within half an hour, all the protected machines were visible in the cloud console, including my servers and workstations. 

I would rate my experience with the initial setup a ten out of ten, where one is difficult, and ten is easy. One of the easiest EDR deployments I've ever done.

Some parts are deployed from the cloud. I have my cloud account, but I downloaded the client software that I executed on individual machines. So, it's hybrid, but the core Threat platform is in the cloud. I just installed the client on each machine. So, it's primarily a cloud solution.

I did it all myself. 

The pricing is acceptable and competitive. WatchGuard's pricing is in a range where they can compete effectively with other vendors. WatchGuard offers similar features for a comparable price, making them a good option for small businesses like ours. 

We mainly support small businesses with 1 to 5 users, or maybe up to 50 users at most. That's why we chose WatchGuard. It's cost-effective for small office, home office (SOHO) environments.

It is very easy to use.  It's designed for anyone, even non-technical folks like myself. Anyone could pick it up. It's like "IT for Dummies" - read it, and boom, you're a WatchGuard specialist! But, knowing deployment requirements helps, but WatchGuard makes it user-friendly.

Overall, I would rate the solution a nine out of ten. 

I use the solution in my company mainly for security management and also for VPN.

The most valuable feature of the solution is its ease of use. For budgetary purposes, it meets our requirements.

For most of the part, the tool's interface is quite simple. The product can improve in terms of layout to provide easier access and viewing to users, especially for the reports.

One of the things that I think is missing in the tool is the area of managing IPv4 traffic via the IPv6 tunnel. If a few features were added to the tool, it would be great for migrating our network from IPv4 to IPv6.

I have been using WatchGuard Firebox for three years.

Considering we have even used the tool in our company for the past three years, we don't see much problem with the devices, except with what we call the updating and patching processes, which require some downplay and everything. I think we are quite satisfied with the tool's performance in our company.

I do believe the solution provides devices with a profile for a much higher requirement, but it all depends on the number of users and everything. Currently, my company is not that big, but we are supported by good vendors. I do believe the tool is scalable in terms of the devices because the product does provide a much higher model, but we don't need it because we are quite a small company.

In my company, we have only around 200 users, so we don't have many staff members.

My company contacted the solution's technical support regarding the services, especially when we had some new requirements in terms of configurations and settings or when there were new protocol rules and policies and policies that needed to be implemented. I rate the support an eight out of ten.

Positive

Previously, we used Sangfor, which is a brand from China, for our firewall and internet access management, but we switched to WatchGuard Firebox three years ago. One of the biggest reasons to use WatchGuard Firebox was related to the area of expertise. Our team or staff had experienced some lack of knowledge in Sangfor. After my company figured out which product was easy to learn and after making some comparisons, we decided to go for WatchGuard Firebox.

Compared to Sangfor, I think one of the advantages of WatchGuard Fire is the VPN solution, which includes a certain number of licenses in the package. There is no requirement to purchase more VPN licenses. The con is that Firebox is a part of the existing solution provided by WatchGuard.

When it comes to the product's initial setup phase, our vendors support us, so they handle the setup process. We don't have many issues or problems during procurement or setting up all the configurations for WatchGuard Firebox.

The solution is deployed on the hybrid cloud model.

Last time, we got the tool ready within three days. After we provided all the information that the vendors required regarding the setup and configuration settings that we needed, they set it up within three days. A third party also provides the tool's maintenance services.

From the budgetary perspective, I believe the proposed price for WatchGuard Firebox was certainly much better than the other model that had been promoted to us before because the concerned department in our company procured the tool. I don't have any specific information on it.

I am not sure about the tool's price as the commercial part is under a different department. I think the tool is quite competitive compared to the other brands.

The tool's most effective for managing threats revolves around the area of the reporting services it offers, which is cloud-based reporting, so we can get a lot of information from the services.

I don't have much experience with other models, so I can't speak about WatchGuard Firebox's security. The good thing is that because it is easier to handle, and the company that supports us provides us with a lot of information, it is easier for us to operate the product.

WatchGuard Firebox VPN features significantly enhance operations, making it easier during COVID-19, when many people work from home. There are very good features, I recall, whereby you can access office resources without requiring employees to come to the office. The tool did help us a lot during COVID-19.

Our company has a data leakage prevention solution for our email. It is quite intuitive, but it's not WatchGuard Firebox.

Whether I would recommend the product or not is something that depends since I work in a small company where the income is not too much. Other companies of similar sizes might find some similarities with our organization, so I can recommend WatchGuard Firebox to such users or businesses. Bigger or corporate users who have much more requirement settings or a large number of users should look for a different brand that can support the large numbers.

I rate the overall tool an eight out of ten.

We use the solution to ensure that no data breach, such as credit card details and national insurance numbers, leaves the company. However, we have to allow some information to go through because we send a lot of information to the National Healthcare Service.

If we don't want specific data sent out, the tool will stop that data based on the policy we have allocated to it. It has reduced the risks of sending data where it shouldn't be. I haven't faced any issues with the tool's integration capabilities. 

WatchGuard Data Loss Prevention needs to improve its support. 

I have been working with the product for eight to nine years. 

I haven't had any issues with the tool's stability, so I rate it a ten out of ten. 

I rate the product's scalability a ten out of ten. My company has 380 users who use it daily. 

The tool's support is responsive and very helpful. 

Positive

I chose the tool because it was easy to use and implement. I haven't faced any security breaches since implementing it. 

WatchGuard Data Loss Prevention's deployment is simple. You can complete the policies you want to run in a few hours. Once it's been set up, we only need to analyze it every now and then to ensure it's still functioning as intended.

WatchGuard Data Loss Prevention's pricing is expensive. I rate it a seven out of ten. 

I would recommend the solution to others. It's effective because it stops data from being sent out easily once set up. I rate the overall product a nine out of ten.

The solution is used when you want to handle policies with the file. There are different ways you can use it, like in the firewall rules and in proxy rules, and to secure emails. The tool was used very much when there were emails with other set files, and then it would all be checked in the firewall.

It is a basic tool tool, and it does very well for what it is supposed to do. It does simple checks against signatures. I think it is very much what it needs to be, and it is a basic tool that you just use.

There were a little bit of problems with the tool's updates, making it an area where improvements are needed. Sometimes, the firewalls did not get updated in the databases.

I have been using WatchGuard Gateway AntiVirus for over ten years.

The tool is so simple to use. Stability-wise, I rate the solution a nine out of ten.

The scalability depends on how many firewalls you have, and you can put every firewall in it which takes part in the gateway on device checking. Scalability-wise, I rate the solution a ten out of ten.

In my company, there are around 50 people who use the tool. My company also has sister concerns and head offices using the tool. I know that sister concerns are using the same WatchGuard devices as the main company.

I don't think I need any technical support from the website, as it is a basic product. You just plug it in where you need it and then use it. I went through some basic training, and after that, I don't think I ever had to ask someone something. You just put it on and make sure that it can connect to the outlet server.

I know about a lot of different tools, but I have been working with WatchGuard for almost all of my career, as it offers services with which you just connect to the ISPs and firewalls, after which you can put the settings on, but for most of my career, I have been working with WatchGuard.

During the product's installation phase, you just put the tool in the right place, and it works.

The solution is deployed on an on-premises model.

The solution can be deployed in a couple of minutes. The installation process is so basic that I don't even remember what you need to do. You just put the tick marks in the tool and ask the tool to use them. In the rules, where you see the files go through is where you can think over what to do with the files. With the tool, you just need to put it on, and then the default rules make sure that there is some indication that something is wrong.

My company manages everything associated with the tool by myself. I was also involved in the tool's maintenance. As a small team, we all can do it.

Every pair has a license, especially for commercial products. For what we use, the tool's price has been reasonable, but it is not the cheapest. The tool has been quite reasonable.

The tool's cost includes various things, like licenses and support. If you buy basic licenses for the device, everything is included, making it easy to use. If one is very expensive and ten is absolutely cheap, then I rate the tool's price as a six.

It is the basic starting tool. We used different tools in the company. In our gateway, we used WatchGuard because we used WatchGuard's firewalls. It was very easy to set it up. It was used so that if there was anything you needed, you could just use the tool, and then we had different tools for workstations.

The tool is a basic product. You usually start with it, and you make sure that everything goes through your devices. If there is a possibility to check the file that is going through your firewall, you do it. If you catch something, then it is very good, and it is much easier to do when no user has access to it. You just need to use the tool at the start, as it makes the end part easier to manage. It doesn't distract your attention from other tasks. It just works, and you don't need to distract yourself.

If users are downloading something from somewhere, the tool makes sure that the easy issues don't get through. Everything else can work a little less because it takes the easy issues out, so it is the backbone for doing the checks. When it can do its checks and block the infected files, it does it very well and easily. When there are different cases where it cannot act as an antivirus gateway that cannot touch files, then you may need different tools, especially if you don't use WatchGuard products for your emails, so you will need to have something on the email side of things. If you are using web emails and trying to transfer them through your firewalls, then it checks the files and says what is not good.

There are bad elements trying to find different ways to get the files through, and they already know their bad deeds very well. They are finding ways to pass your checks and basic things, and so they are always training their people to find better tools to help them in their job to find what needs to be accessed, making it the biggest challenge for the tool to overcome. The tool is good at the start, but it is not so good until the end. You need to be vigilant about changes. I think what is needed is that one gets a view of his or her network so that you know what is happening in your network. Antivirus and firewall products can be a part of our network, and they provide logs so you can see the logs and what is happening in your network. Providing the big picture of your network is what I think we need to do a little bit of a job now.

I have not used the tool's AI features. Someday, I may use it.

It is a very good product for how it works and does its job, but it is not an all-inclusive solution. It does its job very well, and it is quite easy to put to use. You need to get different views of what is happening in your network and what is coming into your network. Suppose the network traffic is going to interrupt it. If you don't go to the SSE proxy settings or you aren't allowed to do it also, then it cannot take all the traffic. If there are possibilities for the traffic to go through, or it cannot check-in, then we need to understand that all the products cannot do it all.

I rate the tool an eight out of ten.

I have used WatchGuard Firebox for firewall testing purposes and setting up a couple of new projects for my company. I test the solution's efficiency in blocking IPs, role management and policy optimization. 

The product can be configured very easily. The license model of WatchGuard Firebox is also simple and transparent. A purchaser can effortlessly obtain the required features through the license system. 

WatchGuard Firebox offers a satisfying VM and hardware. The performance of the solution differs when it's deployed as a VM and a physical appliance. 

All basic firewall-based tasks, such as creating a policy or role, can be effortlessly implemented using WatchGuard Firebox. The user interface is simple and intuitive, allowing even a beginner to complete tasks without difficulty. 

It's very difficult to find a reseller of WatchGuard Firebox to purchase a license. The number of resellers for the solution should be increased through partnerships. The solution's network observability should be improved. The observance adaptability of different WatchGuard devices is minimal and it should be improved. The information or guidance provided by the vendor for using APIs, syslogs and exports should be enhanced. 

I have been using WatchGuard Firebox for eight years. 

I would rate the stability an eight out of ten. It's a fairly stable product. 

I would rate the scalability a seven out of ten. In our company, when we perform some load tests on one interface, there is a requirement for multiple packet drops at times, which the firewall might not be able to handle, and the other interfaces might go down as well.

There are some performance issues in WatchGuard Firebox when the load is high, but within limits the solution works perfectly. There are seven users of WatchGuard Firebox in our organization for the network administrator cycle. The solution is used daily in our company. There are no plans to increase the usage of the product any time soon in our organization as it is being used only for testing purposes. 

The solution has a seamless initial setup process. I would rate the initial setup a nine out of ten. All the deployment aspects of WatchGuard Firebox are straightforward, and all basic features are available, but for advanced features, many professionals might prefer other solutions over WatchGuard Firebox.

The deployment process of the solution took about an hour in our company, it was a step-by-step configuration process but there were some issues with the VM otherwise it would have taken much less time. One professional is enough to deploy WatchGuard Firebox. For maintenance of WatchGuard Firebox only one person is required and multiple professionals monitors the solution in rotational shifts. 

The solution was implemented completely in-house. 

I would rate the pricing as four out of ten. It's an affordable tool. The basic product license costs our company ₹400,000 per year. In our organization, we don't purchase any security add-ons with WatchGuard Firebox. 

I am part of the research and development team, so I parallelly use competitor solutions from vendors like Palo Alto, Sophos and Check Point. 

Our company professionals claim that WatchGuard Firebox is competent with other firewall solutions in the market. For security purposes, our organization mostly relies on proxy software and other application firewalls.

Our company is majorly concerned with the application firewall and not the network security; this is why we choose application firewalls like WatchGuard Firebox, which can be used both as a VM and physical appliance. In our organization, we use the solution not only for testing purposes but also for data centers. 

I would rate the product's performance and reliability for the remote workforce an eight out of ten. When I setup a data center and keep the solution as an entry point, then later on when I access it through a VPN, it will be flawless. It's very easy to configure a VPN using WatchGuard Firebox. The solution will showcase stability and easy accessibility even in remote functions.

For small and medium-scale networks, WatchGuard Firebox will be an ideal and cost-effective solution. I would rate the solution as eight out of ten. I would surely recommend the solution to others. 

We have all kinds of customers, including schools, colleges, institutes, and organizations. We do not work in a specific area, and we have a wide range of customers in various sectors.

The Firebox offers valuable features such as network security, URL filtering, UTM features, intrusion prevention and detection, and authentication. It also supports VPN, IPsec, and point-to-point communication. I did not encounter any problems after configuring threat detection and protection, intrusion prevention systems, and intrusion detection systems.

The only problem I have with Firebox is the grouping issue. When implementing a rule using a group of IPs, it is not possible to do that directly. I have to manually add all the IPs, and this is where I think WatchGuard should improve.

I have been using this solution since 2016.

The support system is similar to EPDR and EPP. They will register my case and either call me back, email me, or send me an article or key bulletin if things are sorted out. 

Otherwise, they will take a remote session to resolve the issue. They have a centralized portal where I can get support for EPP and EPDR.

Neutral

Setting up Firebox is not an easy task for everyone. To set up Firebox, one should have at least professional knowledge. Not everyone can do a Firebox setup because it is executed based on protocols. 

One cannot simply pick up Firebox and go through a basic configuration. For Firebox setup, having knowledge equivalent to Cisco CCNA associate level plus professional level is essential. 

Additionally, understanding basic routing and switching is necessary. Having knowledge of IPs and professional skills is crucial. Unlike Sophos, which is easy with a 'next' approach, configuring Firebox requires deep knowledge about protocols and how they work.

My only issue with Firebox is the grouping issue. I recommend Firebox since this device will not let anyone down. If someone drives a Volkswagen, they may find it challenging to switch to another car. It is the same with WatchGuard; once someone adopts this device, they will likely not buy another.  

I rate the overall solution a nine out of ten.