We just raised a $30M Series A: Read our story

Check Point IPS Pros and Cons

Check Point IPS Pros

JM
Network Security Engineer/Architect at a tech services company with 1,001-5,000 employees
The most valuable feature is that it protects us against hundreds of different attack vectors, like ransomware. The protection is always being triggered. People try to access websites that are categorized as malware, so when the users do a DNS request for the IP of those malware websites, the IPS Blade replaces the real IP of the website that is malware with a bogus IP. The user gets an IP that doesn't exist and when he tries to access, it won't work.
View full review »
KK
IT Department manager at AS Attīstības finanšu institūcija Altum
The reports are well written so that you can understand what type of attack has occurred, the originating IP address, and other details.
View full review »
VN
System and Network Administrator at Auriga - The banking e-volution
The Check Point IPS module allows me granularity in creating rules.
View full review »
Learn what your peers think about Check Point IPS. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
540,884 professionals have used our research since 2012.
Senior Network and Security Engineer at a computer software company with 201-500 employees
The number of the IPS protections is amazing - after the latest update I see more than 11000 in the SmartConsole.
View full review »
Associate Consult at Atos
There's an automatic update after every 2 hours which makes sure that the database is up to date and providing zero-day vulnerability protection.
View full review »
Senior Manager at a financial services firm with 10,001+ employees
It protects against specific known exploits but also, with SandBlast integration, it is able to protect against unknown or zero-day attacks at the perimeter level.
View full review »
Network Engineer at LTTS
IPS can protect our organization with any old vulnerabilities or if any vulnerability detected minutes ago IPS can protect us as per our configured policy.
View full review »
JC
CTO at a computer software company with 11-50 employees
I can easily monitor all of our connected devices and I get instant notification of reconnections and new connections, which removes some of the monitoring burden.
View full review »
User
IPS easily allows follow-up flags on recently updated patterns. If, in rare cases, a false positive does occur, it is quickly detected and an exception can be easily created.
View full review »
PL
Firewall Engineer at a logistics company with 1,001-5,000 employees
IPS signatures can be set quite granularly depending on your environment. You can filter on performance impact, severity, and confidence which makes sizing and adapting easier.
View full review »

Check Point IPS Cons

JM
Network Security Engineer/Architect at a tech services company with 1,001-5,000 employees
The only thing they could maybe improve is that we notice right away that the performance decreases when we enable the IPS, especially beyond the CPU and memory usage. If you want to enable the IPS and you have a lot of traffic, it can have an impact. The performance could be improved.
View full review »
KK
IT Department manager at AS Attīstības finanšu institūcija Altum
Occasionally there are glitches and errors like false positives, which would be a nice area of this solution to improve upon.
View full review »
VN
System and Network Administrator at Auriga - The banking e-volution
Having additional reports available would be helpful.
View full review »
Learn what your peers think about Check Point IPS. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
540,884 professionals have used our research since 2012.
Senior Network and Security Engineer at a computer software company with 201-500 employees
In my opinion, the Check Point software engineers should works on the performance of the blade - when it is activated with the big number of the protections in place, the monitoring shows us the significant increase in the CPU utilization for the gateway appliances - up to 30 percents, even so we are cherry-picking only the profiles that we really needed.
View full review »
Associate Consult at Atos
After the R80 release, there are almost all feature sets available under IPS Configuration. However, further to this, adding a direct vulnerability scan based on ports and protocol for every zone (LAN, DMZ, or Outside) will make Check Point very different compared to other vendors on the market.
View full review »
Senior Manager at a financial services firm with 10,001+ employees
There is a performance impact on the NGFW post-enabling the IPS blade/Module, which can even lead to downtime if IPS starts to monitor or block high-volume traffic.
View full review »
Network Engineer at LTTS
I observed on our management that sometimes IPS does not connect to the threat cloud, we have to check and improve it. Otherwise, all of the features are good.
View full review »
JC
CTO at a computer software company with 11-50 employees
It is generally good, but improving the performance would be the one thing I'd take a look at right now.
View full review »
User
I am not aware of a preview channel or some repository to have a preview on upcoming signatures, however, this would be nice to have.
View full review »
PL
Firewall Engineer at a logistics company with 1,001-5,000 employees
Threat Prevention policies are not very easily manageable as there are several profiles/policies/etc. Therefore, there are several ways to add exceptions and check the configuration.
View full review »
Learn what your peers think about Check Point IPS. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
540,884 professionals have used our research since 2012.