Forcepoint Next Generation Firewall Competitors and Alternatives

Get our free report covering Fortinet, Palo Alto Networks, Darktrace, and other competitors of Forcepoint Next Generation Firewall. Updated: June 2021.
509,570 professionals have used our research since 2012.

Read reviews of Forcepoint Next Generation Firewall competitors and alternatives

MK
IT Administrator / Security Analyst at a healthcare company with 11-50 employees
Real User
Reliable, good support, good documentation makes it straightforward to set up

What is our primary use case?

I am an IT administrator and my job is probably 80% security analyst. We are a HIPAA environment, so we're a regulated industry and my job is to keep us from being breached. It's extremely difficult and an ever-changing, evolving problem. As such, I spend a couple of hours a day just reading everything threat report from every source I can get. We have a pair of 2110 models, with high availability set up. There are multiple licenses that you can get with this firewall, and we subscribe to all three. A few months ago, we made the decision to do an enterprise agreement just because of the amount… more »

Pros and Cons

  • "We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government."
  • "It would be great if some of the load times were faster."

What other advice do I have?

Every firewall has its pluses and minuses, but because we've taken such a layered approach and we're not relying on one thing to keep us safe, I've never really gone, "Oh, I've had it." I've heard some complaints about Cisco TAC, but generally speaking, I've been able to configure them and do whatever I need to with the Cisco firewall. There's nothing in my experience with Cisco that leads me to believe that that's going to stop. I've always felt comfortable with every Cisco purchase we've made and every improvement they've made to it. I think they keep moving in a positive direction and…
MM
Core Network Manager at a comms service provider with 11-50 employees
Real User
Top 10
Excellent integration capabilities, good UI and offers great security features

What is our primary use case?

We mostly implement this product for our clients.

Pros and Cons

  • "Overall, it's nice and very user friendly. That's what makes it so successful. They give you complicated features but with a very simple user interface, and that's been a big success for them."
  • "The support needs to be improved."

What other advice do I have?

We have a lifetime implementation. We're using the latest version of the solution. It's a good product for high-end and large enterprises, but smaller enterprises might not be a good fit. I'd just advise that especially surrounding the initial setup, a new company needs to ensure they have the right support in place. Companies need to make sure their SLA's are very clear so they can get the support they need from the outset and into the future. Compare companies and be clear about the requirements and you will have an easier time. I'd rate the solution eight out of ten. I'd give it full marks…
CL
System Engineer at a insurance company with 1,001-5,000 employees
Real User
Top 10
Prevents users from accessing things on the Internet that they are not supposed to access

What is our primary use case?

We use it as a normal firewall for perimeter security, using some of the Next Generation features, like Anti-Bot and Antivirus. We have two ISPs. We have a different firewall system in front of the Check Point Firewall. We also have normal Cisco switches combined with the Check Point solution. Then, our internal network is with Cisco, which is about 300 servers and 1,500 clients.

Pros and Cons

  • "The firewall feature and DDoS Protector, when turned on, keep away attacks from the outside. They also prevent users from accessing things on the Internet that they are not supposed to access."
  • "It depends whether the problem is known to Check Point. If they are aware there is a problem, quite often it will then depend on which tech you finally land on if it's easier or harder to get to the root cause. The last issue was in India so that was pretty bad. It's easier if you get directly through to Tel Aviv or Ottawa, but you can't choose. Once they know what the issue is, it's pretty good. It pretty much depends on the engineer that you get. There are pretty good engineers and there are many engineers who are at just the starter level at Check Point who are not really into the stuff. Sometimes it's hard, sometimes it's easy, depending on the problem and the tech engineer you get."

What other advice do I have?

Since we are trying to get our customers to do more self-service, we should see more inbound traffic. So, the usage will increase in the next two years. We get more attacks from the outside these days, so it has become more important to use systems like Check Point. When I started with security 25 years ago, it was still something not everybody was aware they needed. Today, it's common sense that everybody needs to protect their perimeter. Plan first, implement last. You should first be aware of what assets you want to protect and what are your traffic patterns. You should plan your policy and…
Owner at Dinamica en Microsistemas de Informatica, S.A. de C.V.
Reseller
Top 5
Easy to use and deploy with an improved pricing structure in place

What is our primary use case?

My clients are mostly based in the government. They are my core clients. I install the solution for my clients.

Pros and Cons

  • "The initial setup is pretty easy."
  • "They need to allow their solution to integrate with other products and not just other Sophos solutions."

What other advice do I have?

I'm a Sophos reseller. We use multiple versions. We have worked with XG 460 and XG 135 and some others -such as XG 230. In those cases, sometimes it has been Rev 1 and in other cases Rev 2 in terms of the hardware versions. I mostly work with on-premise deployments. The only item I have installed in the cloud is an email solution by Sophos. I'd recommend the solution to other organizations. Overall, I would rate it at a nine out of ten.
US
Network Security Engineer at a government
Real User
Top 10
All-in-one-box solution with easy configuration and great routing

Pros and Cons

  • "As per the solution's blade design, there are many options. For example, you have to buy a UTM blade and an advanced malware blade, etc. If the blade license is there, we can configure from the firewall GUI."
  • "If you compare the GUI with the Palo Alto and Forcepoint in the Cisco, they're very easy. Check Point, due to its design, is a little bit complex. They should make the GUI easy to use so that anyone can understand it easily, like Fortinet's GUI. Many companies end up using Fortinet because the GUI is very easy, and there's no need for training. They just deploy the box and do the configuration."

What other advice do I have?

There are two deployment model modes in Check Point. One is a gateway level and one is a no gateway all-in-one box solution. With the gateway level, only hardware will be there, all operating systems are stored in a VMware and if there are any issues in the hardware, you just replace the box; all of your policies will be saved into VMware. The all-in-one box you have the GUI policies and also the gateway so it's secure. If there is an issue in the box - like failure or downtime - all of the networks will be affected. I would rate the solution eight out of ten. We haven't been using it too…
Get our free report covering Fortinet, Palo Alto Networks, Darktrace, and other competitors of Forcepoint Next Generation Firewall. Updated: June 2021.
509,570 professionals have used our research since 2012.