In summary, while Juniper vSRX is praised for its security features, performance, and integration capabilities, users have highlighted areas for improvement such as usability and interface issues. On the other hand, CloudGuard Network Security is appreciated for its firewall capabilities, user-friendly interface, and excellent customer support, but users have suggested enhancements in integration, setup process, and advanced threat intelligence features. Overall, both products offer valuable network security solutions with their unique strengths and weaknesses.
The summary above is based on 82 interviews we conducted recently with Juniper vSRX and CloudGuard Network Security users. To access the review's full transcripts, download our report.
"The pricing is excellent. It's much less expensive than Cisco."
"The performance is good."
"Reliability is the best feature. We faced some issues when we were setting it up, but the service, portal, and administration are good."
"FortiGate firewalls are user-friendly, and I like the security profiling features."
"This product is definitely scalable."
"It enables our organization to become more productive. Also, it protects our NEtWare from viruses and malware."
"We were looking for the VPN feature and controlling the inflow and outflow of all the traffic within the site and across the sites. We are also using it for the VPN and VLANs."
"We use the filtering feature the most. It has filtering and inbuilt securities. We can create customized rules to define which users can access a particular type of site. We can create policies inside the firewall."
"The security configuration features have enhanced the reliable coordination of programs and data safety."
"The notifications, the visibility, and the deployment are the most valuable. It could be packaged in such a way that it took a lot of time and resources off our hands, so it was more efficient."
"It is scalable. It's a cloud solution, so it's easy to implement and manage."
"The ease of deployment has been nice. It is like managing any of our on-prem firewalls."
"The Identity Awareness blade and dynamic tagging in Azure are valuable because they make access management automatic. Instead of manually setting up access for each new resource, it happens automatically based on the same access policy. This dynamic setup is scalable."
"The most valuable feature of this solution is that you can start off with a simple firewall and expand it to UTM."
"We primarily secure our network using CloudGuard Network Security's next-generation firewall features, including anti-spam, IPS, and URL filtering. Our chosen package for the go-to-market strategy is NGTP. For customers seeking more features, we provide options to upgrade to the tool's advanced packages."
"Identity awareness, URL filtering, IDS, DLP, Content Filtering, VPN, and Application Control are all excellent."
"It is deployed on the customer site, and we manage the firewalls on this side."
"The initial setup was very straightforward. There was no problem. The initial deployment took about one hour."
"Juniper is more flexible with the commit check and the commit confirmed command. The design of the forwarding and contract plan in the operating system is very important for the performance when we have very big traffic."
"This solution works well. Their switches and firewall are good."
"The features we found most valuable are using the IDS and IPS during protection. The application filtering feature is great."
"The tool's most valuable features are routing features and service quality."
"The initial setup is pretty simple."
"The pricing is reasonable."
"Some of the web policy reports could be improved."
"The renewal price and the availability could be improved."
"Its reporting capabilities can be improved. It should have some out-of-the-box reporting capabilities and some degree of customization. The basic reporting that it currently has is not sufficient to create more usable reports. It needs some sort of out-of-the-box reporting. They try to make customers purchase FortiAnalyzer for this kind of reporting, which is an additional cost. Other firewall vendors, such as SonicWall and Sophos, provide this sort of reporting without any additional cost."
"I would like to have logs, monitoring, and reporting for a month without extra fees."
"The updates Fortinet provides are sometimes unstable."
"We were not able to build a full-mesh VPN; however, I am not sure if this was the fault of Fortinet FortiGate."
"Fortinet FortiGate can be integrated with different platforms. They have integrations in place, but I can't say they're 100%."
"I think they need to improve more in order to be a competitor with the leaders of the field."
"People don't know about the tool's features. There's a lack of skill. Users require more knowledge on how to integrate it into the cloud environment and orchestrate routing. So, it's not necessarily a CloudGuard Network Security or Check Point issue but more about integration, knowledge, and understanding."
"A threat categorization system can be added to give users the authority to define vulnerable attacks and classify areas that can threaten the workflow system."
"For major upgrades, it's still necessary to destroy the VMs and re-create them again. Doing that would mean new public IPs as well."
"I hope that Check Point continues to improve its technical documentation regarding the Check Point CloudGuard IaaS gateway and management system."
"In the next release, including VRF support would be highly beneficial."
"While Check Point does offer some VWAN offerings, they appear to be more static and less tailored to cloud-native environments compared to Palo Alto's dynamic and flexible approach."
"While today we can manage some scopes, there are still some segments in the OSI layer we cannot manage."
"Our biggest complaint concerns the high resource usage for IDP/IPS, as we cannot turn on all of the features even with new hardware."
"The solution could improve its technical support."
"The reporting can be improved."
"In the next release, I would like to see improvements made to the GUI because it isn't very good."
"I would like to see an activity sensor for malicious content or sensor for viruses and malware."
"The solution's GUI needs improvement."
"Fortinet is more user friendly than Juniper. In terms of remote access, I actually prefer using Fortinet. It's much easier to configure."
"VPN access is an area that needs improvement."
"They could provide support for cloud deployments."
More Check Point CloudGuard Network Security Pricing and Cost Advice →
Check Point CloudGuard Network Security is ranked 8th in Firewalls with 119 reviews while Juniper vSRX is ranked 26th in Firewalls with 30 reviews. Check Point CloudGuard Network Security is rated 8.6, while Juniper vSRX is rated 7.8. The top reviewer of Check Point CloudGuard Network Security writes "The solution has good threat emulation, threat extraction, and reporting features". On the other hand, the top reviewer of Juniper vSRX writes "Fast with good usability and fairly scalable". Check Point CloudGuard Network Security is most compared with Azure Firewall, VMware NSX, Cisco Secure Firewall, Akamai Guardicore Segmentation and Palo Alto Networks VM-Series, whereas Juniper vSRX is most compared with Juniper SRX Series Firewall, Azure Firewall, Meraki MX, Cisco Secure Firewall and Zscaler Cloud Firewall. See our Check Point CloudGuard Network Security vs. Juniper vSRX report.
See our list of best Firewalls vendors and best Unified Threat Management (UTM) vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
