Forcepoint Next Generation Firewall Review

Good console management, but the interface is not user-friendly and application filtering needs finer granularity


What is our primary use case?

We had planned on using this product as our multi-tenant firewall. After one year, we stopped using it because there was a problem with supporting some of the protocols.

What is most valuable?

The most valuable feature is the console management. It is very good and the security was great.

What needs improvement?

The interface is not user-friendly.

We were told that we would receive training but it came late and we had already started to deal with the product, which ultimately caused problems because we did it incorrectly. If the vendor focused more heavily on training as opposed to implementation then it would be a big improvement.

The UTM features are missing.

Application filtering is supported at a high level, but not at a low level. If I want to allow access to Facebook, yet not allow the user to access videos, then I am not able to do it with this product. Essentially, I'm allowed to block but I'm not allowed to limit. With other vendors, I can impose limits.

They need to add support for the Routing Information Protocol, RIP.

There is no support for the Built.io NIC driver.

For how long have I used the solution?

I had been working with the Forcepoint Next Generation Firewall for about one year.

What do I think about the stability of the solution?

We had Forcepoint NGFW running on a virtual machine and it was very stable.

What do I think about the scalability of the solution?

From the design that we took, it had the ability to scale up to 250 clients. That was good for what we needed but we failed with the first customer and could not complete the implementation for the second one.

In our environment, we had ten users.

How are customer service and technical support?

We contacted technical support but it was not the typical support situation where we opened a ticket and they responded. We were in contact with them directly. Because it was irregular, I cannot judge how good or bad the support would normally be.

Which solution did I use previously and why did I switch?

We are currently using three other vendors including Check Point, Fortinet, and Palo Alto. These have always been there but we were hoping to add Forcepoint as another option.

How was the initial setup?

The initial setup is complicated and difficult to do.

By comparison, we have a very large number of products implemented in our environment and we can deploy most of them ourselves.

The deployment took almost seven months and ultimately, we failed. During our work on the deployment, we had two people handling the maintenance.

What about the implementation team?

We received assistance directly from the vendor. There were several people who took part in the implementation including five from our side, one from the vendor, and two from the distributor. The help that we received from them was awesome.

The distributor knows the product more from a theoretical point of view. When it comes to the hands-on experience, they know the basics. When the person from the vendor came, they knew more about the product but had no experience with the multi-tenant aspect. So, for the part that we needed, they were failing. We spent a lot of time and received help from different people, and it was still a failure in the end. We disposed of the product.

What's my experience with pricing, setup cost, and licensing?

We paid for a subscription license, vendor support, and the training.

Which other solutions did I evaluate?

We are a large service provider and we are always looking for new solutions. We had evaluated solutions by Sophos and SonicWall, although we decided that we were going to try Forcepoint.

We would not say No to another try with Forcepoint if, for example, they come back to us with a new version in another year. It would have to have documentation to show that what we want to do is now supported.

What other advice do I have?

We tried a few implementations and we did not have very much success because the interface is not user-friendly and the product is complicated. If we had the training on time then it may have been easy but that wasn't the case.

The biggest lesson that I learned from using this solution is that you can't trust what people tell you. When they say that they will take care of things and support it, that is not included.

My advice for anybody who is implementing this solution is to make sure that the training is completed first, ahead of trying to implement it.

I would rate this solution a four out of ten.

Which deployment model are you using for this solution?

On-premises
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More Forcepoint Next Generation Firewall reviews from users
...who compared it with Fortinet FortiGate
Add a Comment
Guest