A10 Networks Thunder SSLi Reviews

Name: A10 Networks Thunder SSLi
Brand: A10 Networks
Rating: 5 (3 reviews)

4.5 out of 5

3 reviews
75% willing to recommend

What is A10 Networks Thunder SSLi?UNIXBusinessApplication
Price:

SSL encrypted traffic is growing, rendering most security devices ineffective.
Gain visibility into encrypted traffic with SSL Insight and stop potential threats.

Get the A10 Networks Thunder SSLi Buyer's Guide and find out what your peers are saying about A10 Networks Thunder SSLi, F5 BIG-IP Local Traffic Manager (LTM), Fortinet FortiWeb and more!

A10 Networks Thunder SSLi is the #3 ranked solution in top SSL/TLS Decryption solutions. PeerSpot users give A10 Networks Thunder SSLi an average rating of 9.0 out of 10. A10 Networks Thunder SSLi is most commonly compared to F5 BIG-IP Local Traffic Manager (LTM): A10 Networks Thunder SSLi vs F5 BIG-IP Local Traffic Manager (LTM). A10 Networks Thunder SSLi is popular among the large enterprise segment, accounting for 65% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 17% of all views.

Buyer's Guide

A10 Networks Thunder SSLi

May 2024

Get the report

Helped 769,599 peers since 2012

Featured reviews

Kenneth Murray

Data Center Network Engineer at BRIDGETON PUBLIC SCHOOLS

Jan 16, 2020

Its most valuable feature is its ability to do its job accurately, effectively, and very quickly. The amount of traffic that we have going through our system is astounding. We have 6,900 students and about 1,100 staff members. Most of our teachers and staff are connecting through our system. You add to that all the cell phones, the iPads, and all the computers, and then each individual website's connection, that's a lot of traffic in a period of one second. The delay with the SSL decryption turned on is almost unnoticeable. That is great because most SSL decryption solutions — a couple of competitors we did try — their devices crashed as soon as we turned decryption on.

Read full review

Chris Cummings

Director of Information Technology at KLEIN INDEPENDENT SCHOOL DISTRICT

Aug 26, 2019

With the Thunder SSLi, we're better protected. We can stop use of VPN and proxies. We are better protected against dirty traffic coming back to our schools. Having a secure decrypt zone with the equipment lowers the chances that our security infrastructure could possibly miss an attack. It gives us insight into the actual traffic that a student is following. What's the value of identifying possible risks or possible intent based on unencrypted traffic where you have insight to what the student's intent may be? E.g., anonymous bully reporting. It's invaluable to be able to leverage that insight and data to maybe bring help or avert a possible bad circumstance. It's something that's very important to us that this type of system gives us insight into that. For terms of ease of use, it's fairly simple. My analysts tell me that they don't mind getting in there. It was something new that we had to throw on their plate. Every time you add a new element and a new level of complexity, your analysts will look at you like you're crazy, Our plan was originally to use our native firewalls to do the decryption. Unfortunately, that was a feature set which was added on afterward. It just ended up bogging down our system. That is the reason why we had to add the extra hardware. Once the team understood that, the UI was intuitive and a huge help. We use the solution’s Harmony analytics and visibility controller. We have been able to proactively engage and deescalate situations with it. We love Harmony’s traffic management capabilities because it is centralized management. It has a rich analytics capability. This allows us insight into the aggregate performance of all the boxes. so we can possibly leverage any resources available to enhance the environment. We love the single pane of glass traffic management. Single pane of glass is huge, centralized logging. It is the buzzword that everyone is talking about right now, except what nobody seems to take into consideration, is that an analyst only has two eyes. The administration piece of it is huge. It allows us to not just look and get the information, but also cipher it, which is actionable. Looking at logs all day is great, but you can stare in the matrix so long before you want to get in the game. This single pane of glass allows us to look at information that's actionable.

Read full review

Reviewer982346

Enterprise Security Manager at a mining and metals company with 5,001-10,000 employees

Aug 18, 2019

For us, it would be great if it supported SSL operations according to Active Directory users. For example, if we want to bypass one of the servers or a client's internet access for SSL interception, we have to do it according to the IP address. It would be better if we could do it according to the Active Directory username. A10 says they kind of support that but we haven't tested it. Another thing is SNI. A10 intercepts all the traffic according to the SNI, the server name indicator. It would be better if it intercepted traffic according to the IP addresses. A10 can only understand that a website is within the banking category or the website is in the social media category, according to the SNI. Without SNI, there is no way to understand it; there is no bypass operation. It would be better if worked without SNI as well. Also, the solution comes with web categories like banking and social media. There are suspicious URLs, malicious URLs, etc. It would be better if it had an application category as well. For example, it would be helpful if we had the chance to bypass all Office 365 applications: OneDrive, Skype, Outlook, etc. According to Microsoft, we need to bypass SSL for all Office 365 applications but we need to create custom categories and put all the Microsoft URLs in them and then we can bypass. It would be great if an application category could recognize Dropbox, for example. For now, we have to put the Dropbox URLs in one custom category and bypass them. Application categories could be very useful.

Read full review

A10 Networks Thunder SSLi market share

As of April 2024, the market share of A10 Networks Thunder SSLi in the SSL/TLS Decryption category stands at 30.0%, marking a decrease of 20.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.

SSL/TLS Decryption

Key learnings from peers

Valuable Features

"Its most valuable feature is its ability to do its job accurately, effectively, and very quickly. The amount of traffic that we have going through our system is astounding... The delay with the SSL decryption turned on is almost unnoticeable."
"With the Thunder SSLi, we're better protected. We can stop use of VPN and proxies. We are better protected against dirty traffic coming back to our schools. Having a secure decrypt zone with the equipment lowers the chances that our security infrastructure could possibly miss an attack."
"We have several proxies in our environment, so we localized internet traffic between these proxies. Instead of getting a really huge proxy box, according to our size, we can use three boxes and share the traffic with A10's load-balancer feature."

Room for Improvement

"There is one thing I would like to see changed. In their features for setting things up, there is a templating system that would normally assist clients. However, we had a better time setting up the device either through the command line or through the interface and not using the templates that were pre-installed. So there is room for improvement to the templates for initial installation."
"I would like them to have a better UI (better universal design)."
"It would be great if it supported SSL operations according to Active Directory users. For example, if we want to bypass one of the servers or a client's internet access for SSL interception, we have to do it according to the IP address. It would be better if we could do it according to the Active Directory username. A10 says they kind of support that but we haven't tested it."

Pricing

"Our licensing costs, yearly, are just under $15,000. Your initial cost of acquisition is obviously going to be more than $15,000..."
"When you purchase the equipment, you purchase the licensing and warranty. It's all fairly standard. We haven't been caught with anything surprising."
"We always pay for support. Any organization of our size who doesn't is asking for problems."

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our A10 Networks Thunder SSLi Buyer's Guide for additional reliable information.