We performed a comparison between Check Point NGFW and SonicWall NSa based on real PeerSpot user reviews.
Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's great for capturing the traffic and troubleshooting it."
"The response is very quick and they can visually resolve our problems in a short period."
"Virtual Domains (VDOMs) are a feature that we found valuable."
"The application control features, such as Facebook blocking and Spotify blocking, are the most valuable."
"The Intrusion Prevention System and the web filtering are both working well."
"It increases security posture and is helpful for firewall reporting, intrusion protection, web filtering, and SD-WAN implementation."
"The most valuable feature of Fortinet FortiGate is security. They are known for efficiency and are on the top of Gartner Quadrant reviews. Fortinet FortiGate has an easy-to-use platform with a good graphical interface. The configuration is simple and the solution provides an overall good layer of security."
"Overall, the pricing of the solution is very good. The product offers good value."
"The most valuable feature of the solution is the Quantum Intrusion Prevention System (IPS). I also like the solution's functionality, like autonomous threat prevention."
"Check Point helps a lot with automatization which definitely reduces the effort to maintain the environment."
"In a single bundle we have the all solutions we need - like application/URL filtering, and threat emulation/extraction."
"The packet inspections have been a strong point. Our identity collectors have also been helpful. In many ways, Check Point has been a step up from our SonicWalls that we had in-house before that. There's a lot of additional flexibility that we didn't have before."
"In R80.10 and above, you can view logs in SmartConsole. You don't have to open another smart tracker to view logs. That is the improvement Check Point has done which makes it better because it is much easier to find logs. This saves time, approximately 40 to 50 a day in one shift."
"The SmartView monitor and SmartReporter help us to monitor and report on traffic."
"It provides access to the Internet for corporate resources in a secure manner."
"It secures my organization. With the application blade, I can make security as application based and the custom application is also very useful. With identity awareness blades we get insights on our local users who are accessing/passing through the respective rule as users. We also use the DLP, IPS, and VPN features."
"The DPI-SSL is the solution's most valuable aspect. It's handy."
"They offer good antivirus solutions."
"It has good reporting, the reporting is marvelous."
"SonicWall NSA is easy to deploy, easy to maintain, and easy to configure."
"Easy to setup and implement"
"Deep packet inspection and intelligent application control are the most valuable features. It is a very updated solution. It is very current as compared to other brands and vendors."
"The basic firewall rules of the solution are great."
"With the deployment of the SonicWall NSA solution, we never suffered a problem due to invasion or contamination of any kind."
"The room for improvement is about the global delivery time period. Usually I need to wait for almost one month to deliver it overseas. So if you can shorten the deliver time it'd be great."
"The support from Fortinet FortiGate could improve. They are not easily accessible when we need them. They could improve their response time."
"I'm not sure if it's something that they already have or are developing something, however, we need some dedicated features for container security."
"I don't really have anything negative to say as far as Fortinet firewalls are concerned. If anything, they can support a user a little bit better. They can stop being so time-sensitive about how much time the support call has taken, and they can help you do it yourself."
"The main aspect of FortiGate that could be improved is load balancing. Our management team does not want to buy another appliance for only load balancing."
"We would like to see an upgrade to the VPN feature, we are using the VPN from outside of our office and there is a limitation to 10 connections, more connections would be suitable."
"It's my understanding that more of the current generation features could be brought in. There could be more integration with EDRs, for example."
"Fortinet could improve the windows opener or the virtual IP solutions for opening windows. The virtual IP settings need improvement as firewalls are trending in new development directions."
"The antivirus is less effective than its competitors' antivirus. The antivirus is good, but in other firewalls, such as Palo Alto, it's quite effective. Check Point should provide more output. Sometimes it provides comprehensive information and sometimes it doesn't."
"Although there is a lot of automation and pattern that can be classified automatically, the IPS systems are sometimes a little bit complicated, and doing the fine-tuning in over 20,000 patterns is hard to do."
"Although Check Point provides annual updates to the Gaia platform, integration with other OEMs is difficult."
"It would be ideal to manage everything from one central place."
"The end-user VPN could be improved. It could benefit from some modification."
"The client for the central tools is very big - maybe using web access in future releases, similar to other vendors should be possible."
"The NAT services part needs improvement. It's not sophisticated. It needs functions like range assignment for NATing. The way you assign a list of IPs for NATing is too simple. It just allows you to use pools."
"The user interface should be user-friendly"
"SonicWall NSa doesn't have a proxy. It also needs a quota management feature in specific scenarios where you must limit user bandwidth for a particular day."
"Competitors provide SSL encryption licenses for free, whereas SonicWall only provides two licenses by default, but you have to pay for the rest of the licenses."
"The security standards for space and point of view should be improved so that the solution deploys in critical areas."
"SonicWall needs to work on SD-WAN."
"It would be useful to have an application firewall that prevents the outside world from seeing your private IPs. You don't need to publicize your private IPs to the outside world, and you can create a barrier, like a proxy server."
"We also need to increase the throughput because the other devices are slower. The throughput will become slow. Since we're using VoIP, it tends to affect the voice quality. Even if you're using a quality service, it tends to decrease."
"Port forwarding could use streamlining."
"Having to deal with too many lower-level people in technical support means that it takes longer to resolve issues, so escalating support tickets should be faster."
Check Point NGFW is ranked 5th in Firewalls with 277 reviews while SonicWall NSa is ranked 19th in Firewalls with 80 reviews. Check Point NGFW is rated 8.8, while SonicWall NSa is rated 7.8. The top reviewer of Check Point NGFW writes "Good antivirus protection and URL filtering with very good user identification capabilities". On the other hand, the top reviewer of SonicWall NSa writes "Great performance and security with reasonable pricing". Check Point NGFW is most compared with Palo Alto Networks NG Firewalls, Sophos XG, Cisco Secure Firewall, Netgate pfSense and Sangfor NGAF, whereas SonicWall NSa is most compared with SonicWall TZ, Meraki MX, Sophos XG, Cisco Secure Firewall and Palo Alto Networks NG Firewalls. See our Check Point NGFW vs. SonicWall NSa report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.