Compare Check Point NGFW vs. Meraki MX

Check Point NGFW is ranked 10th in Firewalls with 16 reviews while Meraki MX is ranked 3rd in Unified Threat Management (UTM) with 12 reviews. Check Point NGFW is rated 8.2, while Meraki MX is rated 8.2. The top reviewer of Check Point NGFW writes "Effective security and local support have been the key features for us". On the other hand, the top reviewer of Meraki MX writes "Great SD-WAN solution. Manage multiple Meraki devices (security, switches, APs, Cameras) with a single pane of glass". Check Point NGFW is most compared with Fortinet FortiGate, Azure Firewall and Meraki MX , whereas Meraki MX is most compared with Fortinet FortiGate, Cisco ASA NGFW and SonicWall TZ. See our Check Point NGFW vs. Meraki MX report.
Cancel
You must select at least 2 products to compare!
Cisco ASA NGFW Logo
69,220 views|52,003 comparisons
Check Point NGFW Logo
3,431 views|2,315 comparisons
Meraki MX  Logo
47,665 views|37,093 comparisons
Most Helpful Review
Jurgen Dendas
Find out what your peers are saying about Check Point NGFW vs. Meraki MX and other solutions. Updated: March 2020.
420,062 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home functionality.The most valuable feature is that the encryption is solid.Unfortunately in Cisco, only the hardware was good.For us, the most valuable features are the IPX and the Sourcefire Defense Center module. That gives us visibility into the traffic coming in and going out, and gives us the heads-up if there is a potential outbreak or potential malicious user who is trying to access the site. It also helps us see traffic generated by an end device trying to reach out to the world.The information coming from Talos does a good job... I like the fact that Cisco is working with them and getting the information from them and updating the firewall.The firepower sensors have been great; they do a good job of dropping unwanted traffic.The most important point is the detection engine which is now part of the next-generation firewalls and which is supported by Cisco Talos.The most valuable feature of this solution is AMP (Advanced Malware Protection), as this is really needed to protect against cyber threats.

Read more »

With the new SmartTask offered in R80.40, we will be happy to configure some automatic control-functions.Check Point is very administrator-friendly and the SmartDashboard is easy to use.SmartCenter and SmartLog are the best platforms to manage firewall rules. SandBlast Zero-Day is very useful when encountering any security leaks.The rules are very easy to deploy and can be optimized pretty quickly.The best feature is the ability to increase the capacity of the solution by exactly what you add, not losing anything for High Availability.The most valuable feature is that we are protected against zero-day threats.The solution is easy to use. I like the monitoring the most.The initial setup was very straightforward. You can customize it and change it as you need.

Read more »

Point-to-point VPNs can dynamically follow IP changes with no need for static IPs.Dual WAN connections are greatly simplified and point-to-point VPNs automatically connect regardless of what WAN connection is active.I like the automatic firmware updates. We use the Active Directory to authenticate VPN users.I use Meraki in my POCs and with my customers as well.The internet traffic shaping has been very valuable.Deployment takes no more than one working day.The initial setup for me was straightforward.A strong, reliable solution for small companies with little or no dedicated IT department.

Read more »

Cons
Cisco provides us with application visibility and control, although it's not a complete solution compared to other vendors. Cisco needs to work on the application behavior side of things, in particular when it comes to the behavior of SSL traffic.It is expensive.In NGFW, Cisco should be aligned with the new technology and inspection intelligence because Cisco is far behind in this pipeline.We were also not too thrilled when Cisco announced that in the upcoming new-gen ASA, iOS was not going to be supported, or if you install them, they will not be able to be managed through the Sourcefire. However, it seems like Cisco is moving away from the ASA iOS to the Sourcefire FireSIGHT firmware for the ASA. We haven't had a chance to test it out.Our latest experience with a code upgrade included a number of bugs and issues that we ran into. So more testing with their code, before it hits us, would help.The software was very buggy, to the point it had to be removed.Most users do not have awareness of this product's functionality and features. Cisco should do something to make them aware of them. That would be quite excellent and useful to organizations that are still using legacy data-center-security products.I have found that Cisco reporting capabilities are not as rich as other products, so the reporting could be improved.

Read more »

The Check Point support needs a lot of improvement.The SmartUpdate interface is a little bit crowded if your company has a lot of software items.Check Point needs to work on hardware problems also.One of the main features that need improvement is the rule filter export.One of the biggest disappointments is the GUI.Reporting has to be improved.All the advanced features of automation, especially the first installation of tunnels, need improvement.Although they have it now, we don't have a license for it, and I think mobile device security should be a standard feature. I cannot control someone bringing their device to my network and what they do.

Read more »

Meraki tech support staff have a lot more visibility into your network than you do, which is frustrating at times. I understand the approach is to keep the dashboard easier to understand. This will frustrate more advanced users at times.​Expensive licensing and firewall stops immediately working if the license is not renewed at expiration date.I need more UTM protection security features.The IPS, the Intrusion Prevention System, can be improved.Load balancing options and ability to manage a couple of Internet connections.Right now, you can postpone the update but eventually, if you don't do the update, it will install the updates automatically for you and that's something that is not working for me.The client-side VPN is weak. The product could be improved with deployment templates.The problem is that the two licenses do not currently integrate. We have to create separate companies and do an interconnection.

Read more »

Pricing and Cost Advice
In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.Always consider what you might need to reduce your wasted time and invest it in other solutions.Pricing varies on the model and the features we are using. It could be anywhere from $600 to $1000 to up to $7,000 per year, depending on what model and what feature sets are available to us.We used Check Point and the two are comparable. Cost was really what put us onto the ASAs... the price tag for Check Point was exorbitantly more than what it is for the ASA solution.We are in the process of renewing our three-year license, which costs approximately $24,000 USD for the thirty-six months.The pricing for Cisco products is higher than others, but Cisco is a very good, strong, and stable technology.The program is very expensive.The cost of this solution is high.

Read more »

Licensing issues may be confusing at times.Maybe the pricing is a bit high but you get the durability and the duration.We pay $5,000-$6,000 a year.The price is high in comparison to other solutions.Check Point solutions are very expensive here. They're good, but they're expensive... Check Point is only useful for customers that have a big IT budget.

Read more »

​Other content filtering solutions that I have used had more bells and whistles, but given the cost, complexity, and management overhead, I am very pleased with Meraki’s solution.Meraki is also expensive, but it's a little bit less expensive and it's easier to configure than Cisco ASA.Pricing varies as per the type of license.

Read more »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
420,062 professionals have used our research since 2012.
Top Comparisons
Compared 37% of the time.
Compared 10% of the time.
Compared 21% of the time.
Compared 8% of the time.
Compared 36% of the time.
Compared 12% of the time.
Compared 7% of the time.
Also Known As
Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire FirewallsCheck Point NG Firewall, Check Point Next Generation FirewallMX64, MX64W, MX84, MX100, MX400, MX600
Learn
Cisco
Check Point
Cisco
Overview

Adaptive Security Appliance (ASA) is Cisco's end-to-end software solution and core operating system that powers the Cisco ASA product series. This software solution provides enterprise-level firewall capabilities for all types of ASA products, including blades, standalone appliances and virtual devices. Adaptive Security Appliance provides protection to organizations of all sizes, and allows end-users to access information securely anywhere, at any time, and through any device.

Adaptive Security Appliance is also fully compatible with other key security technologies, and so provides organizations with an all-encompassing security solution.

Block more threats and quickly mitigate those that do breach your defenses with the industry’s first threat-focused NGFW.

Offered via the Check Point Infinity architecture, Check Point’s NGFW includes 23 Firewall models optimized for running all threat prevention technologies simultaneously, including full SSL traffic inspection, without compromising on security or performance. Learn More about Next Generation Firewall and What is Firewall?

With the proliferation of modern applications and mixed-use networks, host and port based security is no longer sufficient. Cisco Meraki's layer 7 "next generation" firewall, included in MX security appliances and every wireless AP, gives administrators complete control over the users, content, and applications on their network.
Offer
Learn more about Cisco ASA NGFW
Learn more about Check Point NGFW
Learn more about Meraki MX
Sample Customers
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.Control Southern, Optimal MediaHyatt, ONS
Top Industries
REVIEWERS
Financial Services Firm20%
Comms Service Provider9%
Manufacturing Company9%
University7%
VISITORS READING REVIEWS
Software R&D Company28%
Comms Service Provider20%
Media Company7%
Government5%
REVIEWERS
Financial Services Firm31%
Retailer15%
Insurance Company8%
Logistics Company8%
VISITORS READING REVIEWS
Software R&D Company27%
Comms Service Provider11%
Insurance Company7%
K 12 Educational Company Or School7%
REVIEWERS
Comms Service Provider25%
Consumer Goods Company13%
Financial Services Firm13%
Logistics Company13%
VISITORS READING REVIEWS
Software R&D Company23%
Comms Service Provider19%
Construction Company8%
Government5%
Company Size
REVIEWERS
Small Business35%
Midsize Enterprise25%
Large Enterprise40%
VISITORS READING REVIEWS
Small Business28%
Midsize Enterprise20%
Large Enterprise51%
REVIEWERS
Small Business30%
Midsize Enterprise22%
Large Enterprise48%
REVIEWERS
Small Business57%
Midsize Enterprise22%
Large Enterprise22%
VISITORS READING REVIEWS
Small Business53%
Midsize Enterprise14%
Large Enterprise33%
Find out what your peers are saying about Check Point NGFW vs. Meraki MX and other solutions. Updated: March 2020.
420,062 professionals have used our research since 2012.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.