WatchGuard Firebox Reviews

I have used WatchGuard Firebox for firewall testing purposes and setting up a couple of new projects for my company. I test the solution's efficiency in blocking IPs, role management and policy optimization. 

The product can be configured very easily. The license model of WatchGuard Firebox is also simple and transparent. A purchaser can effortlessly obtain the required features through the license system. 

WatchGuard Firebox offers a satisfying VM and hardware. The performance of the solution differs when it's deployed as a VM and a physical appliance. 

All basic firewall-based tasks, such as creating a policy or role, can be effortlessly implemented using WatchGuard Firebox. The user interface is simple and intuitive, allowing even a beginner to complete tasks without difficulty. 

It's very difficult to find a reseller of WatchGuard Firebox to purchase a license. The number of resellers for the solution should be increased through partnerships. The solution's network observability should be improved. The observance adaptability of different WatchGuard devices is minimal and it should be improved. The information or guidance provided by the vendor for using APIs, syslogs and exports should be enhanced. 

I have been using WatchGuard Firebox for eight years. 

I would rate the stability an eight out of ten. It's a fairly stable product. 

I would rate the scalability a seven out of ten. In our company, when we perform some load tests on one interface, there is a requirement for multiple packet drops at times, which the firewall might not be able to handle, and the other interfaces might go down as well.

There are some performance issues in WatchGuard Firebox when the load is high, but within limits the solution works perfectly. There are seven users of WatchGuard Firebox in our organization for the network administrator cycle. The solution is used daily in our company. There are no plans to increase the usage of the product any time soon in our organization as it is being used only for testing purposes. 

The solution has a seamless initial setup process. I would rate the initial setup a nine out of ten. All the deployment aspects of WatchGuard Firebox are straightforward, and all basic features are available, but for advanced features, many professionals might prefer other solutions over WatchGuard Firebox.

The deployment process of the solution took about an hour in our company, it was a step-by-step configuration process but there were some issues with the VM otherwise it would have taken much less time. One professional is enough to deploy WatchGuard Firebox. For maintenance of WatchGuard Firebox only one person is required and multiple professionals monitors the solution in rotational shifts. 

The solution was implemented completely in-house. 

I would rate the pricing as four out of ten. It's an affordable tool. The basic product license costs our company ₹400,000 per year. In our organization, we don't purchase any security add-ons with WatchGuard Firebox. 

I am part of the research and development team, so I parallelly use competitor solutions from vendors like Palo Alto, Sophos and Check Point. 

Our company professionals claim that WatchGuard Firebox is competent with other firewall solutions in the market. For security purposes, our organization mostly relies on proxy software and other application firewalls.

Our company is majorly concerned with the application firewall and not the network security; this is why we choose application firewalls like WatchGuard Firebox, which can be used both as a VM and physical appliance. In our organization, we use the solution not only for testing purposes but also for data centers. 

I would rate the product's performance and reliability for the remote workforce an eight out of ten. When I setup a data center and keep the solution as an entry point, then later on when I access it through a VPN, it will be flawless. It's very easy to configure a VPN using WatchGuard Firebox. The solution will showcase stability and easy accessibility even in remote functions.

For small and medium-scale networks, WatchGuard Firebox will be an ideal and cost-effective solution. I would rate the solution as eight out of ten. I would surely recommend the solution to others. 

The WatchGuard Firebox is excellent for ensuring the security of remote workers, making it ideal for organizations with distributed teams or remote workforce setups.

It manages network traffic, serving as a fundamental component of the firewall.

WatchGuard excels in reporting and monitoring capabilities, offering comprehensive options for filtering and querying data. Their centralized console simplifies management for organizations with multiple Fireboxes. Instead of logging into each firewall individually, administrators can access and monitor their entire firewall infrastructure from a single IP address.

Certain features stand out as particularly effective for threat prevention, such as XDR (Extended Detection and Response) and MDR (Managed Detection and Response). These functionalities, although not inherent to Firebox, can be integrated seamlessly for existing WatchGuard customers. This integration offers significant benefits, as it streamlines security processes and eliminates redundancy that often occurs when using multiple security tools from different vendors.

The distribution and channel strategy, particularly in regions like Pakistan and Afghanistan, may hinder their visibility and adoption. Due to their lack of investment in marketing, channel development, and certifications, WatchGuard faces challenges in gaining visibility and market share, especially in regions like Pakistan. Unlike competitors such as Cisco and Fortinet, who offer extensive training and certifications for their partners, WatchGuard's limited focus in this area hinders their ability to attract technical talent and expand their customer base. To address this issue and improve its presence in the market, WatchGuard could consider offering free or low-cost certification programs to educate potential partners and customers on their technology. By empowering individuals with the necessary skills and knowledge, WatchGuard can create a network of brand ambassadors who can advocate for their solutions and drive adoption.

WatchGuard's offerings are invaluable and I believe they provide superior security solutions compared to Barracuda and Juniper. WatchGuard's products are versatile and suitable for a wide range of organizations from small to large, yet they may not be fully recognized in the enterprise sector due to messaging and marketing strategies that focus on small to medium-sized environments.

The initial setup is straightforward.

The product's simplicity and user-friendly interface require minimal assistance during configuration and deployment. Deployment time varies from customer to customer. For less complex use cases, the firewall can be deployed in just one day.

WatchGuard offers competitive pricing with attractive margins, benefiting both the company and its partners.

Overall, I would rate it eight out of ten.

We have all kinds of customers, including schools, colleges, institutes, and organizations. We do not work in a specific area, and we have a wide range of customers in various sectors.

The Firebox offers valuable features such as network security, URL filtering, UTM features, intrusion prevention and detection, and authentication. It also supports VPN, IPsec, and point-to-point communication. I did not encounter any problems after configuring threat detection and protection, intrusion prevention systems, and intrusion detection systems.

The only problem I have with Firebox is the grouping issue. When implementing a rule using a group of IPs, it is not possible to do that directly. I have to manually add all the IPs, and this is where I think WatchGuard should improve.

I have been using this solution since 2016.

The support system is similar to EPDR and EPP. They will register my case and either call me back, email me, or send me an article or key bulletin if things are sorted out. 

Otherwise, they will take a remote session to resolve the issue. They have a centralized portal where I can get support for EPP and EPDR.

Neutral

Setting up Firebox is not an easy task for everyone. To set up Firebox, one should have at least professional knowledge. Not everyone can do a Firebox setup because it is executed based on protocols. 

One cannot simply pick up Firebox and go through a basic configuration. For Firebox setup, having knowledge equivalent to Cisco CCNA associate level plus professional level is essential. 

Additionally, understanding basic routing and switching is necessary. Having knowledge of IPs and professional skills is crucial. Unlike Sophos, which is easy with a 'next' approach, configuring Firebox requires deep knowledge about protocols and how they work.

My only issue with Firebox is the grouping issue. I recommend Firebox since this device will not let anyone down. If someone drives a Volkswagen, they may find it challenging to switch to another car. It is the same with WatchGuard; once someone adopts this device, they will likely not buy another.  

I rate the overall solution a nine out of ten.

WatchGuard is easy to implement and inexpensive. When we get a bulk-off license, we get a very discounted price that is competitive with alternative or competitor solutions.

We can manage multiple sites within one console through the cloud.

Since WatchGuard acquired Panda, there may be synergies in consolidating both solutions under a single name to reduce customer confusion. Additionally, WatchGuard must address the issue of commercial licenses available at very low prices online, creating conflicts and challenges during sales to end users.

I have been using WatchGuard Gateway AntiVirus for five years. We are the distributor of WatchGuard in Egypt and Saudi Arabia.

It's stable. It does not cause any system crashes. Upgrading and updating are very easy and straightforward.

I rate the solution’s stability a nine out of ten.

The scalability is high because we can add additional workstations or endpoints. It's very easy to add to the management console.

It is for all solutions because it will depend on the number of licenses. If it is an enterprise, the cost will be low as it depends on the number of licenses.

We have some issues with technical support. They provide low responses.

Neutral

It is easy to implement and configure. It depends on the number of workstations that we will install. If we are going for one machine, it will not take more than ten to fifteen minutes.

I rate the initial setup an eight out of ten, where one is difficult, and ten is easy.

The price is acceptable compared to competitors. It is the lowest price of all cybersecurity solutions.

I rate the product’s pricing a six out of ten, where one is cheap, and ten is expensive.

The endpoint itself is an agent. It is implemented on-prem, but the management can be done on-prem or in the cloud.

We recommend the solution.  Overall, I rate the solution an eight out of ten.

WatchGuard Firebox serves as the main firewall for customers' premises and data centers, a VPN server and a site-to-site VPN server. It is utilized for web filtering, and we have also deployed XDR solutions on it.

Cloud integration is one of the best features.

I have been using WatchGuard Firebox as a partner for eight years.

I rate the solution’s stability a ten out of ten.

We've deployed for companies with over one thousand people. Firebox is scalable. For instance, it supports high availability with a primary and secondary box configuration. You can purchase a high-availability device to enhance reliability. Additionally, if you need to expand, you can upgrade the device by paying for the upgrade, and they'll provide you with a more powerful unit.

The technical support is awesome. We are a scalable partner with them. Whenever we need expert assistance from WatchGuard, a whole team is connected with us, helping us when things get difficult. You have to work hand in hand with them.

Positive

The initial setup is straightforward. You can deploy it on-premises or using the cloud. If you configure the device to connect to the cloud, you can deploy the Firebox based on templates. You can add a template for a specific client and deploy it for a particular use case. For example, if you're setting it up for a restaurant or a cafe, you can have templates tailored for those businesses. This significantly reduces deployment time, especially if you have several customers of the same type of business.

One person is enough for the solution's deployment, but it will run in less than an hour.

A network security engineer meets with clients to gather configuration requirements. He prepares a configuration template before the implementation. When he arrives at the site, he turns on the device, applies the template, tests everything, and then migrates the settings from the existing router or firewall to the Firebox.

The price is reasonable. It's a powerhouse. The device is stable and fast. Its software is excellent for deployment. It outperforms its stated capabilities. I haven't had any malfunction or damage in eight years due to power outages or similar issues.

With WatchGuard Firebox, we have deployed IP as part of our security measures. Thanks to the additional layer of protection provided by the IPS, our clients and networks are more secure. Additionally, we benefit from a gateway antivirus and an intelligent antivirus that employs AI for enhanced protection. This intelligent antivirus scans all files and information flowing through the gateway.

WatchGuard Firebox's threat detection and response capabilities are highly effective and fast. We've witnessed its efficiency firsthand during various events, such as DNS service attacks. It swiftly halts the attack and notifies you of the details promptly.

The notification time usually doesn't take long, maybe around five minutes after the event.

We have two shifts of engineers monitoring our NOC. They look at the devices, check alerts, and can take action based on the alerts received. We have one expert for tier one and another for tier two.

You can have a powerhouse in a box with the best price on the market. WatchGuard Firebox offers the best price. We work with Cisco and other brands, but their firewall and UTM solution has the best price in the market.

If you deploy a UTM, you deploy Firebox. For example, if you deploy another solution for EDR, you’re going to have two separate EDR solutions. You’re going to have a UTM disconnected from whatever you use from another brand. What ends up happening is that when you purchase all the security solutions from WatchGuard, you’re going to have all solutions combined in a single pane of glass. The learning curve and investment you make will be solid, with one solution that is easy to use, understandable, reasonably priced, and highly effective in security.

Overall, I rate the solution a ten out of ten.

WatchGuard Threat Detection and Response is used to monitor traffic and give alarms to the administration if something goes wrong. It reacts when services protected by it are attacked and sends notifications that something is amiss.

There is a significant improvement in the security of our organization. It's challenging to quantify the cost savings precisely, but it prevents potential breaches and protects our intellectual property. If a breach occurs, it could be catastrophic and very costly.

The most valuable features include the ability to raise alarms when there are issues, easier configuration compared to other vendors, centralized update management, and keeping the product updated efficiently.

The pricing of WatchGuard Threat Detection and Response could be improved. It's not the cheapest option available. That said, it often meets our needs effectively. There are areas for improvement in making the product more economical. 

In the future, I would like to see enhancements in eliminating threats more intuitively, allowing easier identification of issues.

I have been working with WatchGuard Threat Detection and Response for about five years.

In terms of stability, there have been no major issues after upgrades. I would rate the stability of the solution an eight out of ten. There were no significant problems related to this part of the solution.

WatchGuard Threat Detection and Response is quite scalable. It is designed to handle expansion and increase in usage efficiently. I would rate its scalability an eight out of ten.

The customer service and support from WatchGuard are excellent. In Finland, the technical support team has always provided outstanding service whenever required. I would rate the technical support team ten out of ten.

Positive

The initial setup involves configuring many elements, which can be a bit challenging. However, with detailed knowledge and preparation, the setup process can be completed in a day or two.

Usually, WatchGuard's sales team in Finland includes a great technical team. I often turned to them if there was something I could not resolve right away. They provided really good support.

It's challenging to put a monetary value on the return of investment for this product as it primarily enhances security. Its effectiveness in preventing breaches significantly impacts overall cost savings.

WatchGuard Threat Detection and Response is not the cheapest solution. It usually falls in the middle of the price spectrum. However, considering the overall picture, including support and ease of use, it can be more economical in the long run.

There are alternative solutions available, but if you are using WatchGuard firewalls, it is quite easy to use this product too.

In selecting security solutions, it's essential to consider the overall support and long-term ease of use. WatchGuard products, including firewalls, tend to be easier to configure and use compared to some cheaper alternatives.

I'd rate the solution eight out of ten.

The primary use case of the Firebox mainly revolves around bandwidth management, unnecessary web blocking, application control, and protection against brute force attacks. It is also implemented for load balancing, SD-WAN, and branch-to-branch connectivity from one location to another. We also use it for securing access through VPN and enforcing network security policies.

The WatchGuard Firebox has helped in securing our network by implementing a strong firewall with various features like VPN support, gateway antivirus, and application control. It has aided in preventing brute force attacks and managing our bandwidth effectively.

Some of the most valuable features of the Firebox include web blocking, application control, protection against brute force attacks, load balancing, SD-WAN, and VPN support. These features help us manage and secure our network efficiently.

One area for improvement is the limitation in the product portfolio compared to competitors like Fortinet, which offers a broader portfolio including Authentication, VPNs, FortiMail, Sandbox, and Email Security. WatchGuard's focus on UTM solutions may not meet the needs of all enterprise customers.

We have been using the WatchGuard Firebox for approximately five years.

The stability of the WatchGuard Firebox can vary depending on the customer network environment. The performance and latency may differ from customer to customer and infrastructure to infrastructure.

The scalability of the Firebox depends on the specific model and the number of concurrent users it can support. Different models offer different VPN capacities and can be tailored to fit the needs of various sizes of organizations.

Customer service and support are not explicitly mentioned in terms of rating, but overall feedback seems positive.

Positive

I have previously used various solutions including CyberRooms, Sophos, Fortinet, SonicWall, and other competitors. We largely switched to WatchGuard to integrate their UTM solutions and later their acquired endpoint security portfolios.

The initial setup of the WatchGuard Firebox is straightforward and time-saving. It is designed to be user-friendly even for those with basic IT knowledge, making it easy to deploy and manage.

Implementation can be done by internal IT teams. WatchGuard also provides support for implementation, ensuring that the configurations are appropriately pushed as per the model and requirements.

WatchGuard offers cost-effective solutions, especially beneficial for economically-constrained customers. Pricing and discounts are deal-dependent and vary based on customer requirements.

We evaluated multiple products, including Fortinet, SonicWall, Sophos, CyberRooms, and various others in the market.

To maintain the efficacy of the Firebox, it is crucial to renew the subscription to get security updates and additional support features. Ensuring the subscription is up-to-date is necessary for ongoing product support.

The solution controls who can connect to the Internet and who cannot and which protocols and services are allowed to pass through. It manages VPNs, including back-office VPNs. It also provides web-blocking features for users who want to restrict access to certain types of content.

Compared to competitors in the same segments, WatchGuard Firebox is an excellent firewall to implement.

WatchGuard Firebox offers DNS protection along with geofencing features. Additionally, the SSL VPN combined with multifactor authentication is excellent and a standout feature. 

The product is expensive. The pricing could be improved.

WatchGuard Firebox offers various models, each designed to meet different needs. While it's true that the models share many features, consolidating the lineup into fewer models could be beneficial. For example, they could have distinct models for small, medium, and large enterprises, each capable of scaling according to the number of users or throughput requirements. This approach would streamline their offerings, making it easier for customers to choose the right Firebox for their needs.

I have been using WatchGuard Firebox for 25 years.

The solution is very stable. I rate the solution’s stability a ten out of ten.

The solution’s scalability is good. 20 customers are using this solution.

I rate the solution’s scalability an eight out of ten.

WatchGuard support is highly effective. They maintain an excellent support and help desk service.

Positive

Once, I had to connect with a Cisco device on the remote side, which also went smoothly. It was between a customer and a third-party firm conducting business with my customer. They needed to establish a connection to their Cisco Firewall, and the implementation process was as smooth as setting up the back-end VPN.

The initial setup is straightforward. A simple installation for a small business takes about four to six hours. One IT guy is enough for the deployment.

I rate the product’s pricing an eight out of ten, where one is cheap, and ten is expensive.

The solution is transparent and easy to set up and maintain. 

WatchGuard Firebox has always been very effective for many customers who use Firebox to connect their remote sites. Additionally, many customers log in to a Firebox using the WatchGuard Mobile VPN with multi-factor authentication. This setup has proven to be very stable, high quality, and easy to configure.

Customers find WatchGuard Firebox to be an expensive solution, but some of them recognize its necessity. However, some customers initially fail to see the need for a firewall. Yet, when it comes time for renewal, after a year or three, they begin to understand its importance, often aided by a chart explaining its benefits. Just like a car requiring periodic servicing, a firewall also necessitates attention.

I recommend WatchGuard Firebox to others because it's a very good product. Firstly, it boasts numerous nice features. It's straightforward to implement, maintain, and understand. One particularly appealing feature is the real-time traffic monitoring.

Overall, I rate the solution a nine out of ten.