SonicWall TZ Room for Improvement

Virtual CIO/ CISO at Kyber Security
We've turned the SSL inspection on, and it is a nightmare. It doesn't mean it doesn't work, but it will turn your world upside down for weeks until you tune it and get it right. That's an across the board problem. It's not just TZ. That's TZ's, NSA's, etc. Wherever you're using their implementation of SSL, where you've got to implement a certificate on every machine. Once you even get past that it's still going to be particular and finicky. Banking sites are driven crazy by it every time we turn it on. It is trying to lock down outbound traffic so tightly that you get to sites that are already very security conscious. It's just a battle to get the traffic through. Intentional traffic, the traffic you want to get through, seems to be a problem. It will stop almost everything. Too much in fact. I understand the concept. It's just a little threatening. We just had a client sign off on a 6650. Then we send them a scope of work for implementing it. We specifically put a note in there in enormous bold type: "Note does not include SSL-DPI implementation". That is additional. The client responded that "That's the one piece I wanted you guys to do. I'm scared of it." He said, "We're scared of it," and I told him, "We're scared of it too." I said, "I don't know how long it's going to take. And it's going to turn your universe upside down for a week to 10 days to maybe two weeks." He said that he heard that this would be the case. My fear is that the client thinks that we'll say it will take four hours and then, when it turns into 40, try to make us give them the submission for free. Even tiny environments, for example, 10 user environments, once you turn it on, you will spend days tuning it. The last one we did took us 22 hours to get it perfect. We learned our lesson. We slotted in four to eight hours to do it and it took us 16 to 20. From a support perspective, if we're talking tech support I think Silver Partners, Gold Partners, Platinum, whatever level, should have a different number to call. End users can call tech support over at SonicWall if they've paid for support as part of their AGSS or whatever services they bought. The end-user can call, or we can call, however, I don't want to be calling the same line that an end user's calling. I don't want the same response time. I need a different level of expertise. View full review »
Rias Majeed
CIO IT Security - Connectivity at Exceed NetSec LLC
In some places, we face problems, especially in the client VPN portion. There are certain places where we are not able to contact. We don't have the lease line, static IP addresses, or dynamic IP addresses. This is an area of concern. Another thing which I don't like about SonicWall is that it tries to bypass the resellers. That is not good. SonicWall suddenly calls the client, goes to them directly. That is not a good thing. They should consider working a bit more on their ransomware application. View full review »
Harry Srolovitz
Manager, Customer Security & Guidance at a tech services company with 201-500 employees
Not relating to this product specifically, but I think overall the company needs to think more broadly about security continuity across the entire security spectrum and integrate more security options with their solutions, like Cisco is doing. They need identity management products and DNS solutions to really complete the line of security. Because of the whole management system, there could also be improvement to their GMS, which is a system allowing you to manage an entire fleet of their firewalls via a central pane of glass. Today as more organizations as forced to working from home and the security perimeter is now the home, businesses need more affordable and scalable systems to manage and monitor numerous devices, more easily and push out updates through essential platforms. View full review »
Learn what your peers think about SonicWall TZ. Get advice and tips from experienced pros sharing their opinions. Updated: December 2020.
454,950 professionals have used our research since 2012.
Puneet Dobhal
The dashboard needs to be improved. They can work on the GUI part of the solution. Currently, it is a little bit complicated as compared to other competitors. Each uplink is quite a big and complicated sort of tool. Other products, like Checkpoint, are so-so, however, they are better. Fortinet is a good example of one that is very good and easy to use. View full review »
Vice President & Chief Information Officer at a aerospace/defense firm with 10,001+ employees
The support for this product has to be improved. With what I use, I don't really require any other features. View full review »
John Sturman
Technologist at Digifabshop (Hudson, NY)
I find that the user interface for the product configuration needs improvement. It is not intuitive when you are trying to figure out how to get something done. An additional feature that I would like to see is reporting that includes metrics to give me more information about the number of viruses that it has actually detected and interrupted. View full review »
DPO - Especialista em Proteção de Dados at a tech services company with 11-50 employees
The user interface could be improved. Another issue is that part of the company strategy is that once the license expires, the company blocks features and things slow down. It would be nice if they would provide a free version for small companies. Most companies here in Brazil either don't have the money or their culture is cost-oriented so they don't make large investments in security. They prefer products which are less expensive such as open, source-based firewalls. Having access to a free version would mean that we could create an awareness within the company about the importance of these solutions. Because of the dollar rate, the product is quite expensive for us, whereas in the States it's affordable to spend a few thousand dollars on a solution. View full review »
Svein Jensen
Senior Engineer at KDsystems
I don't have anything that I would say needs improving at the moment. The small business line has less PPS throughput and that's what you're going to lose on when you use WatchGuard. So they need to improve the throughput of the firewall in the small business line. Easy to explain : WatchGuard T70 vs SonicWall TZ600 Firewall Throughput : 4Gbps vs 1.9Gbps Price : 610€ vs 973€ View full review »
Umut Erol
Partner at 0ve1
We would like to improve the rules configuration in SonicWall TZ. Sometimes the rules don't work. We cannot prove that the rules don't work. Maybe they can improve that. Sometimes you write a rule in SonicWall and users are not able to use YouTube, Facebook, or Instagram. Users can see YouTube or Instagram for a while, but five minutes later, they cannot visit the sites. The additional feature I would like to see included in the next release of this solution are analyzers. They can put it in the software, i.e which users are in which sites. We need to see which users are on which sites simultaneously. In this edition, it's hard to see. You can just see the IP address. FortiGate has 40 analyzers. Maybe SonicWall can put it in the license for at least three. View full review »
Network & System Engineer at Construction Products Holding Co.
Full monitoring obviously needs to be improved. We need full monitoring covered under the security licensing. The license should include reporting and monitoring. It shouldn't be an add-on, it should just go along with it. They should also make the monitoring easy to manage. Sometimes we need reports. We need some live monitoring decisions on how it's going down. We should take the live report from the SonicWall itself. I want to display the report under our monitor so I can monitor firewalls outside our area. View full review »
Senior Manager - Information Technology at Bahrain Kuwait Insurance
This product has room for improvement in the cloud version. Also, the support could be better. Otherwise, SonicWall TZ is good for us. The additional feature I would like to see included in the next release of SonicWall is a better analyzer. That would be more helpful. Then people will stay with SonicWall. View full review »
Rajendra Burla
Manager IT/ System Administrator/ Network Administrator at Indsec
It could be made more user friendly. View full review »
Khaled Elbendary
General Manager at sysguard
There can be an improvement in analysis and reporting. We need enhancement on the reporting side. View full review »
Munjal Bhalgama
Owner at IT CARE
We have been facing issues with reporting. We use to have a free tool for reporting, but now there is a licensing fee. View full review »
Engineer at a pharma/biotech company with 501-1,000 employees
The pricing is of this solution is high and could be reduced to make it more competitive. The monitoring is a little bit confusing. View full review »
Khizar Iqbal
IT Engineer at Asia General Contracting
I currently have two issues from SonicWall. One issue is that the IP is not the public IP. Sometimes it moves to an alternate source and I have to refresh the new IP then we can proceed. View full review »
Tammy Elliott
IT Manager at K-Vac Environmental Services, Inc.
Needs more robust self-help documentation along with examples and things to watch out for. View full review »
Essam Alhanini
IT Admin at a healthcare company with 11-50 employees
With SonicWall TZ, they should make the interface useful for the user. This needs to happen very soon because now the interface is not sufficient. When I need to apply some features, I get many tasks and too many to create objects. View full review »
SME, IT Consultant & Founder with 11-50 employees
The hardware is outdated and very slow. They are far behind Sophos and even FortiGate when it comes to hardware. View full review »
Patti Braun
WCOIL/IT Department at Lima Central Catholic
I would like to see lower antivirus pricing. So far I haven't found any situation that I needed anything else added/included. View full review »
Learn what your peers think about SonicWall TZ. Get advice and tips from experienced pros sharing their opinions. Updated: December 2020.
454,950 professionals have used our research since 2012.