If you were talking to someone whose organization is considering Check Point IPS, what would you say?
How would you rate it and why? Any other tips or advice?
In summary, this is a well-made product and I don't feel like I would suggest improvements other than having more reports. I recommend its adoption to those who have the availability of a team, internal or external, that has the ability to manage it and the knowledge of the company.
In summary, since we have installed Check Point IPS, we really have not had any major complaints or requests for improvement. It was pretty easy to get up and running and configured to protect our environment.
For the most part, we don't have any problems with this product. I would rate this solution an eight out of ten.
My advice would be to always have it with the latest database because you want to be protected against the latest attack vectors. It's very important to have it doing automatic updates so that when Check Point reviews an update of an attack that is currently happening, you always get it first before you get the effect. I would rate Check Point IPS a nine out of ten. Not a ten because of the logging issues we've experienced.
The IPS is a very good blade in Check Point NGFW.
The correct performance sizing is essential for this kind of software - use the tools provided by the vendor, and consult the sales if you are still not sure.
My advice for anybody who is researching this type of solution is that they need to choose the product carefully. Most importantly, I would look from a performance perspective. Secondly, I would consider it from a pricing perspective because there are cheaper solutions available like Sophos and Fortinet, and they are good at what they do. If there is no firewall in place at all and this is their first project with protecting the enterprise, then it is reasonable to look at all of the vendors and look at what features are needed. The most important part is what your administrators are used to using because if you need to train them then it's additional costs. The next thing that I would suggest is to make sure that you get a good partner because it is important to have good first-level support. The biggest lesson that I have learned from using Check Point IPS is to be quite careful about which features you enable with it, and which protections to use. You need to balance performance with security, finding exactly the right configuration for your environment and requirements. Overall, I would say that this is a decent product. If the pricing were cheaper then I would say that it was perfect. I would rate this solution an eight out of ten.
We use the on-premises deployment model. We're still in the process of evaluating options. We're doing a POC with Cisco and Darktrace and are moving away from Check Point. I'd rate the solution seven out of ten.
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.
Let the community know what you think. Share your opinions now!