I feel that paying a yearly maintenance fee for firmware updates is not worth it in my opinion. I would rather see the yearly fee go for updates to the add-ons and live security, but I think as time goes on firmware updates should be free since the price tag of some of these devices is difficult for some small businesses to swallow.

While I hold the company in high regard the learning curve on these devices can be tough right out of the box. I've had to contact support on numerous occasions due to little quirks in the system that needed to be ironed out.

View full review »

The WatchGuard gateway wireless functionality for managing access points leaves much to be desired. While the access points are good hardware, the access point controller lacks many of the features found on other wireless controllers. For example, when adding a MAC address to the controller (if restricting access to particular devices), every attached access point reboots, interrupting the wireless network.

View full review »

I’m not in favor having to setup security proxy settings instead of just turning them on like you do with the SonicWALL enhanced OS.

View full review »

I would like them to improve the product's overall protections. This would be good for all product users. E.g., let the user know of the next type of attack that is happening on the horizon. 

View full review »

Intrusion Prevention, Antivirus, and Data Loss Prevention

View full review »

Initially WatchGuard assured us regarding endpoint security, but we are not sure that the product provides endpoint security features to its full extent. Instead, WatchGuard provided us a VPN hardware. WatchGuard needs to improve this feature.

View full review »

The management console and web interface are very bad. They should improve it and add more command lines and easy scripting functionality. I also suggest adding/improving smart and easy logging and debugging tools.

View full review »

While the wireless capability is great for roaming and seamless hand-off, there have been intermittent issues with connection dropping on Apple devices.

View full review »

Using the SSL VPN remote feature is great, but we additionally needed two-factor authentication, and employed a third-party product. An in-house WatchGuard solution would have been preferable.

View full review »

In my opinion, image clarity is very important, because I don't get the proper image product on reports. This means that functionality is not there.

My engineer does not know how he can replace an order. We attach a log after any kind of keys using a utility instead. 

For the internet policies that we are implementing, the policy should be based on proper protocols. We use the default policies and there are a number of third-party protocols that appear here.

Management with WatchGuard XTM means that out of policy is the problem from our side. In this way, we can not do effective services for people with this one. 

The policy definition with WatchGuard XTM is not proper for all use case requirements. 

I've got weekly business reports that I am expecting attachments with from WatchGuard XTM that display data for all kinds of consideration which should be required. 

Main User Functionality Level Order must adhere to using the admin functionality on the registry, or else our users publish their own name. 

Maybe these recommendations are irrelevant, but I say that the issue to improve most with WatchGuard XTM is the Main User Function.

View full review »

1. It is difficult to configure WatchGuard with your internet settings.

Actually, a normal internet setting/configuration is easy. However, I had a problem with multi WAN and multi LAN. I have a few different LAN subnet and two WAN.

What I want to do is to route traffic from LAN1 through WAN1 and use WAN2 as failover. And for LAN2, it would route through WAN2 and use WAN1 as failover. So all traffic from LAN1 supposed to go through WAN1 only unless WAN1 is down, then it will go WAN2.

However, I still could see some packet from LAN1 go through WAN2 at the same times. I checked the Traffic Monitoring in WatchGuard and I figured it out that is because of default “Outgoings” policy. Unfortunately, I could not disable default “Outgoings” policy and if I do “all clients could not access the internet even if I created another Outgoing Policy to replace the default one”.

I used to ask my Vendor to help with this problem, but they could not do it.

2. I would like to see more granularity on each IP bandwidth that is used. I want to check which IP consume internet Bandwidth the most, but it is not convenient to check the total bandwidth that one IP is consuming. I need to go to “Traffic Management” to see which group IP that used most of the bandwidth, and then I go to “Hostwatch” to check bandwidth of each IP and sum the consumed bandwidth by myself.

3. It cannot block Internet Download Manager nor the Torrent application “BitComet” Internet Download Manager and BitComet are two applications that I cannot block in “Application Control”. I used to ask my vendor for help, but they still could not do it. Other application (Messenger, other peer-to-peer application, social network, VOIP .. etc), WatchGuard can block them.
View full review »

The web interface is easy to use but it looks complicated and could be simplified. Also it's lacking a feature to key in description for host IP addresses, and I think we need that to identify certain IP addresses.

View full review »

1. We still haven't got the Terminal Service agent to work in our Citrix environment
2. Application Signature also doesn't work well especially in SSL traffic

View full review »

I wouldn't add anything to it as it is.

View full review »

The problem is the high cost. Also, two important functions that need to be improved are the deep reports and visibility.

View full review »

Sometimes the local firebox management tool is flaky. The web management interface makes up for that. View full review »

The setting policies need improvement. It needs an easier way to do static NAT and check on what policy is being used for that specific traffic. 

In addition, easier setup policies should be provided for this solution. The administration of the product needs improvement.

View full review »

WatchGuard never stops doing improvements on their products.

View full review »

• QoS for their version control needs to be improved
• The dashboard needs to be more user friendly

View full review »

I think the anti-Spam feature, and the real time log to inspect the bandwidth users both need improving.

View full review »

Can’t add static route with domain, must use IP.

View full review »

Wireless throughput needs to be improved.

View full review »

In my experience they need to make changes in web filtering access for Skype as that's the time we had problems.

View full review »

• Web GUI interface
• Scalability to enterprise backbone bandwidth

View full review »

It's a fine product, but some features like the max bandwidth don't work well.

Also, the VPN errors are not helpful when troubleshooting.

View full review »

Licensing should be improved.

It should allow you to keep the rules that are created; at the end of the grace period, it does not allow you to create new rules but only to maintain the current ones.

The mobile administrative management applications (mobile devices) should be improved.

View full review »

SSO needs to be improved.

View full review »

• Expensive
• Requires client-server application to use some advanced features

View full review »

Reporting features are there but aren't the greatest when compared to other devices.

View full review »

No real cons device is working fine View full review »

Syslog (Dimension) is focused on presentation, but needs more focus on utility like SonicWall syslog (GMS/Analyzer).

View full review »