• Home
  • Check Point IPS vs. Cisco NGIPS

Check Point IPS vs Cisco NGIPS comparison

Cancel
You must select at least 2 products to compare!
Check Point Software Technologies Logo

Check Point IPS

Read 45 Check Point IPS reviews
5,858 views|4,065 comparisons
100% willing to recommend
Cisco Logo

Cisco NGIPS

Read 62 Cisco NGIPS reviews
2,973 views|1,746 comparisons
93% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Check Point IPS vs. Cisco NGIPS
March 2024
Executive Summary

We performed a comparison between Check Point IPS and Cisco NGIPS based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Check Point IPS vs. Cisco NGIPS Report (Updated: March 2024).
Download the complete report
768,246 professionals have used our research since 2012.
Featured Review
Anonymous User
Great unified system with impressive protection and helpful support
Digital transformation has been efficient and productive thanks to the operation of this great product. After the implementation of IPS, there is... Read more →
Anonymous User
Researched Check Point IPS but chose Cisco NGIPS: Auto-scaling, powerful software fingerprint identification, and good technical support
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The Check Point IPS feature I find the most valuable is the firewall. It is great and easy to work with.""The most valuable feature of Check Point IPS is the management of devices and policies.""The notifications are the most valuable feature of the solution.""The tool's most valuable feature is its detection panel. Managing and updating policies within Check Point IPS is easy and without issues. It provides a secure network.""The reports are useful in helping to verify the threats where we can see the level of severity in order to be able to take action.""Protection in real-time is very good. It helps us detect things on time and make decisions to improve perimeter security.""User-friendly and easy to implement.""IPS easily allows follow-up flags on recently updated patterns. If, in rare cases, a false positive does occur, it is quickly detected and an exception can be easily created."

More Check Point IPS Pros →

"The most valuable feature would be the IPS is very important in Cisco Firepower because I can configure deep configuration in IPS and tuning.""It is more or less stable. Sometimes I have some issues normally when we need to upgrade it to newer versions. I think it does the job.""This is a stable solution.""The solution is stable. This is one of the good things in Firepower. Especially if we use ESE with it.""The initial setup wasn't complex or complicated.""We have found the IPS detection to be a very valuable feature of this solution. It is easy to use to stop policy violations.""We like the Cisco product, the concept, and the tech intelligence.""NGIPS lets you map web requests to a specific user to determine who is downloading files and what they are accessing. You can use it to identify users downloading malware or track time wasters using Facebook or something like that. It gives you visibility into what your users are doing on the Internet."

More Cisco NGIPS Pros →

Cons
"We have a lot of false positives and the list of IPs are not up to date in terms of their location.""There is an issue with precision.""The installation documentation has room for improvement.""The hardware-based version of Check Point IPS could be more scalable. Right now, it's not scalable.""Sometimes protections are 'aggregated' into a single threat name when you look at the logs. I would prefer to see all protections named individually (for example, right now, 'web enforcement' is a category that contains several signatures).""After the R80 release, there are almost all feature sets available under IPS Configuration. However, further to this, adding a direct vulnerability scan based on ports and protocol for every zone (LAN, DMZ, or Outside) will make Check Point very different compared to other vendors on the market.""The cost is high.""I hear from my admin that the firmware upgrade process is quite cumbersome."

More Check Point IPS Cons →

"If there was a software-based solution for scaling up then it would be much better.""Multi-internet line load balancing should be supported.""We don't like its licensing model. It has separate licensing for all the features. For instance, to get URL filtering, you need to buy another license. Every feature set seems to require another license. Unless you purchase them all upfront, you find some surprises and realize that you can't do that because you need another license. Its logging isn't quite as good as it used to be in our previous solution. We used to have Cisco ASA, and we could view the logs a lot easier than NGIPS (also known as Firepower). We saw real-time logging, but we don't see that as much in Firepower.""The solution should contain the sandbox features which we find in Check Point.""The look and feel of the console could be updated.""I would recommend this solution to others for medium, large, and enterprise businesses only.""The inclusion of bandwidth management features would improve this product.""What I don't like about Cisco recently is they keep changing the names, which makes it hard for customers and sometimes even us as engineers to know what is the solution they are speaking about. For example, with AMP, now they call it Secure Endpoint and I don't know if in the next couple of years they're going to change it to something else. They should keep the names the same."

More Cisco NGIPS Cons →

Pricing and Cost Advice
  • "I think that the price of support is around $40,000 USD or $50,000 USD per year."
  • "The price of this product should be reduced."
  • "Enabling IPS does not require any additional license purchase from OEM, as it comes by default with the NGFW bundle."
  • "The pricing for Check Point IPS is competitive and brings good value for the money."
  • "The module has a considerable cost but you can save by purchasing a package with several modules instead of making a single purchase."
  • "Pricing for this solution is negotiable and I'm happy with our pricing."
  • "There is a license needed to use the Check Point IPS which is not expensive. However, the Check Point IPS device is expensive."
  • "You can pay for Check Point IPS yearly, or you can go with a three-year license. There's no extra cost apart from the standard licensing fee."

    • More Check Point IPS Pricing and Cost Advice →

  • "We buy the licensing on a yearly basis, when we renew our contract. It is around $14,000."
  • "The price for additional throughput is the highest in the industry."
  • "Licensing fees for this solution are $3,500 USD, and there are no additional costs."
  • "Cisco products are always expensive, but if you can afford the price then it's a great solution."
  • "Pricing depends on negotiation with the vendor, although I can say that it is moderate."
  • "The cost of the license depends on the level of support that you have with Cisco."
  • "This is an expensive product, with the biggest cost being the license that keeps the service going."
  • "There are licensing fees depending on the features that you are using."

    • More Cisco NGIPS Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    See Recommendations
    768,246 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Check Point IPS?
    Top Answer:It offers robust protection with features such as Next Generation firewall capabilities, mobile solutions, and proactive threat prevention.
    Read all 31 answers   →
    What is your experience regarding pricing and costs for Check Point IPS?
    Top Answer:The pricing is quite reasonable.
    Read all 21 answers   →
    What needs improvement with Check Point IPS?
    Top Answer:Enhancements are necessary for the proficiency of notifications in the event of a Social Security incident, whether through email or alternative channels such as SMS.
    Read all 30 answers   →
    What do you like most about Cisco NGIPS?
    Top Answer:The product's initial setup phase was easy.
    Read all 49 answers   →
    What is your experience regarding pricing and costs for Cisco NGIPS?
    Top Answer:Cisco NGIPS is an expensive product.
    Read all 34 answers   →
    What needs improvement with Cisco NGIPS?
    Top Answer:My company does not use the URL filtering capabilities offered by Cisco NGIPS. My company prefers to use the URL filtering feature offered by a brand other than Cisco since other tools provide an… more »
    Read all 49 answers   →
    Ranking
    3rd
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    5,858
    Comparisons
    4,065
    Reviews
    27
    Average Words per Review
    430
    Rating
    8.4
    5th
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    2,973
    Comparisons
    1,746
    Reviews
    25
    Average Words per Review
    329
    Rating
    8.2
    Comparisons
    Also Known As
    Check Point Intrusion Prevention System
    Sourcefire NGIPS, Firepower NGIPS
    Learn More
    Check Point Software Technologies
    Cisco
    Overview

    Check Point IPS is an intrusion prevention system that aims to detect and prevent attempts to exploit weaknesses in vulnerable systems or applications. The solution provides complete, integrated, next-generation firewall intrusion prevention capabilities at multi-gigabit speeds with a low false positive rate and high security. It helps organizations secure their enterprise network, and protect servers and critical data against known and unknown automated malware, blended threats, and other threats.

    Check Point IPS Features

    Check Point IPS has many valuable key features. Some of the most useful ones include:

    • Real-time protections: IPS is constantly updated with new defenses against emerging threats. Because the solution’s IPS protections are pre-emptive, it provides organizations with defenses before exploits are created or vulnerabilities are even discovered.
    • Virtual patching: The solution combines robust IPS functionality with a concerted patching strategy, allowing network administrators to secure networks between upgrades and patches.
    • Flexible deployment: Check Point IPS was designed to be deployed easily and efficiently.
    • 360 visibility and reporting: To help users achieve an unmatched level of visibility that detects and prevents threats, Check Point IPS integrates with SmartEvent, enabling security operations center (SOC) staff to respond to high-priority events first.

    Check Point IPS Benefits

    There are many benefits to implementing Check Point IPS. Some of the biggest advantages the solution offers include:

    • Efficient: Check Point IPS includes acceleration technologies that let you safely enable IPS. Additionally, its low false positive rate can save a lot of time.
    • Secure: The solution delivers thousands of signature and behavioral preemptive protections, making it a very secure tool.
    • Unified: With Check Point IPS, users can Enable IPS on any Check Point security gateway, thereby reducing Total Cost of Ownership (TCO).

    Reviews from Real Users

    Check Point IPS is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it has granularity capabilities for rule creation, quick updates of signatures, and a helpful mechanism that allows users to turn IPS signatures to a different mode automatically.

    A System and Network Administrator at Auriga mentions, “The Check Point IPS module allows me granularity in creating rules. I can specify which definition to apply and to which scope or network.” The reviewer also adds, “I can create multiple profiles, which is helpful.”

    “The quick updates of the signatures when a new threat is identified are great. For instance, when Microsoft releases patches, we usually see new signatures for those issues that have to be patched in a day. This gives us time to test/deploy the patches while already being protected from the threats. Also, it's very good with reporting. I can generate reports for management automatically based on the threats of the last day/week/whatever is needed,” says a Systems en networks engineer at CB.

    Another PeerSpot user, a Network Engineer at VSP Vision Care, writes, “The mechanism where you can let the system automatically turn the IPS signature to a different mode (prevent / monitor / inactive) is a nice feature that allows us to easily adjust the balance between security protection and the risk of business impact.”

    Cisco NGIPS (Next-Generation IPS) is a highly effective intrusion detection and prevention solution. It is designed to secure a user’s system from end to end and ensure that users are equipped to handle even the most sophisticated threats by offering them a high level of network visibility, threat intelligence, and security automation. Organizations across a wide variety of industries trust IPS to help them prevent unwanted intrusions from harming their networks.

    Cisco NGIPS Benefits

    Some of the ways that organizations can benefit by choosing to deploy Cisco NGIPS include:

    • Increased visibility. Cisco NGIPS enables users to gain a real-time view of all of the events that are taking place in their network. It gathers data from all corners of the network and uses it to provide organizations with context that can aid them in both proactively keeping themselves safe from harm and reactively addressing potential issues.
    • Increased threat protection. NGIPS’ backbone is the core open Snort technology. This is the most widely used intrusion prevention software on the planet. It leverages this software to search for and detect vulnerabilities and anomalies that might otherwise go unnoticed. IPS is 99.7% effective at stopping threats.
    • Flexibility. NGIPS can be customized so as to fit an organization’s specific security needs. Users can set the system so that it recognizes and seeks out threats that the organization defines as being of the highest level of concern.

    Cisco NGIPS Features

    • Security automation. NGIPS offers users a variety of powerful automation tools that can be leveraged to maximize a network’s protection. Analytics tools automatically examine intrusions and correlate them with known vulnerabilities in a user’s network.
    • Integration suite. NGIPS enables users to integrate their security with many different cloud and application security services. Organizations can seamlessly combine the features that NGIPS offers with other platforms to bolster their effectiveness. This gives users the option to plug any feature hole that they might perceive.
    • URL filter. NGIPS comes with a built-in filter that allows businesses to specify sources that the system should flag and block. This prevents known threats from causing significant harm to an organization’s network.

    Reviews from Real Users

    Cisco NGIPS is a highly effective solution that stands out when compared to many of its competitors. Two major advantages are its easy-to-use GUI interface and the highly effective technical support that it offers users.

    Aankit G., a consultant at Pi DATACENTERS, said, “The FTD has a GUI interface, which is very easy to work around with all the configurations. It is a client-based software based on Java. Now we have the GUI web interface, and it's very interactive and easy to navigate.”

    Gebremichael T., a networking and security engineer at IE Network Solutions PLC, says, “The other aspect that I like is the technical support, who are highly capable. They were very good to us during the times that we used them and they tend to reply immediately to queries, even though you might not get the right engineer to help you right away. Tickets are usually assigned to junior staff at first but they do have escalation procedures, so if the support member can't solve the issue then they will immediately escalate it to higher management.”

    Sample Customers
    Morton Salt, Medical Advocacy and Outreach, BH Telecom, Lightbeam Health Solutions, X by Orange, Cadence, Nihondentsu, Datastream Connexion, Good Sam, Omnyway, FIASA, Pacific Life, Banco del Pacifico, Control Southern, Xero, Centrify
    American Electric Power, Huntington Bank, Keycorp, Nationwide, Transunion, Marriott, Inova Health, Ford, Thomson Reuters, Dow Chemical, Equifax, Chevron, Walmart, Coca Cola
    Top Industries
    REVIEWERS
    Security Firm21%
    Computer Software Company13%
    Financial Services Firm13%
    Government11%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Comms Service Provider9%
    Financial Services Firm8%
    Security Firm7%
    REVIEWERS
    Financial Services Firm19%
    Computer Software Company14%
    Government11%
    Comms Service Provider8%
    VISITORS READING REVIEWS
    Computer Software Company19%
    University11%
    Government9%
    Financial Services Firm9%
    Company Size
    REVIEWERS
    Small Business45%
    Midsize Enterprise26%
    Large Enterprise29%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise18%
    Large Enterprise55%
    REVIEWERS
    Small Business38%
    Midsize Enterprise27%
    Large Enterprise35%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise16%
    Large Enterprise64%
    Buyer's Guide
    Check Point IPS vs. Cisco NGIPS
    March 2024
    Free Report: Check Point IPS vs. Cisco NGIPS
    Find out what your peers are saying about Check Point IPS vs. Cisco NGIPS and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    768,246 professionals have used our research since 2012.

    Check Point IPS is ranked 3rd in Intrusion Detection and Prevention Software (IDPS) with 45 reviews while Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 62 reviews. Check Point IPS is rated 8.6, while Cisco NGIPS is rated 8.2. The top reviewer of Check Point IPS writes "Great for detection and access with the capabilities of defining specific rules". On the other hand, the top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". Check Point IPS is most compared with Darktrace, Palo Alto Networks URL Filtering with PAN-DB, Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System and Fortinet FortiGate IPS, whereas Cisco NGIPS is most compared with Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System, Cisco Sourcefire SNORT, Palo Alto Networks Advanced Threat Prevention and Trellix Intrusion Prevention System. See our Check Point IPS vs. Cisco NGIPS report.

    See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

    We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.