2018-02-25T10:17:00Z

What needs improvement with SonicWall TZ?

11

Please share with the community what you think needs improvement with SonicWall TZ.

What are its weaknesses? What would you like to see changed in a future version?

ITCS user
Guest
3030 Answers

author avatar
Top 10Real User

The log sections could be done more clearly. I would like there to be the ability to manage content filtering on a per-user basis or by using the application as we normally would for all users. Currently, it is applied to a group of users and I do not think it is reliable or performing as good as it should.

2021-06-12T09:08:36Z
author avatar
Top 5Real User

It's worked well for us over the years. We don't have any special demands in terms of new features. It has everything we need. Although the pricing is good, it could always be lower. If we get to pay less, we're happier.

2021-06-09T17:03:38Z
author avatar
Top 5LeaderboardReseller

The stability could be a lot better. The SonicOS, which we were using, was not that stable. Sometimes it is not performing as expected as per the policies we have set. The log, the logging capabilities, are not so good. For example, the logging for traffic logs was not being stored properly. The logging must support some storage space. If there is a storage device or storage mechanism within it we would be able to get the log easier.

2021-06-09T15:16:52Z
author avatar
Top 20Real User

FortiGate has a client DNS in the firewall, but SonicWall doesn't have that. To create or configure a site-to-site VPN tunnel, we have to give a DNS name. Currently, we have to get the DNS name from a third party and then include it in SonicWall, whereas FortiGate has its own client DNS, so it provides a DNS name, and it does not require a third party. There should be a graphical option to view the network utilization and bandwidth usage.

2021-04-01T19:06:44Z
author avatar
Top 10Real User

As compared to other firewalls, they should provide an unlimited number of users for the SSL VPN. The VPN that is available in the new version is a bit bulky and slower in speed. It should also be easier to use. The SD-WAN feature should be enhanced, similar to Fortinet FortiGate.

2021-03-05T22:01:04Z
author avatar
Top 20Reseller

There was one complaint I always had in the past. Years ago, you always had to enable the device. You had to go online to enable the device. You had to connect and do that. That was always a thing in my mind: "Well, why do I have to do that? Why do I have to go outside of my network just to do that?" Now, it seems to be less of an issue. However, that's been something that has frustrated me. It's not fixed. It's still the same. It's just something I live with now. I wish you didn't have to go off your network to connect. I would like the solution to build in more redundancy. I would hope that doesn't come with a price increase, however, it would make the solution that much better.

2021-02-07T11:05:49Z
author avatar
Top 20Real User

The GUI interface could be improved. It would make a difference if they could update that.

2021-02-04T10:00:06Z
author avatar
Top 20Reseller

The user interface could be improved. Another issue is that part of the company strategy is that once the license expires, the company blocks features and things slow down. It would be nice if they would provide a free version for small companies. Most companies here in Brazil either don't have the money or their culture is cost-oriented so they don't make large investments in security. They prefer products which are less expensive such as open, source-based firewalls. Having access to a free version would mean that we could create an awareness within the company about the importance of these solutions. Because of the dollar rate, the product is quite expensive for us, whereas in the States it's affordable to spend a few thousand dollars on a solution.

2021-01-10T08:12:16Z
author avatar
Top 10Real User

It could be made more user friendly.

2020-09-09T06:28:59Z
author avatar
Reseller

The dashboard needs to be improved. They can work on the GUI part of the solution. Currently, it is a little bit complicated as compared to other competitors. Each uplink is quite a big and complicated sort of tool. Other products, like Checkpoint, are so-so, however, they are better. Fortinet is a good example of one that is very good and easy to use.

2020-07-26T08:19:13Z
author avatar
Real User

We've turned the SSL inspection on, and it is a nightmare. It doesn't mean it doesn't work, but it will turn your world upside down for weeks until you tune it and get it right. That's an across the board problem. It's not just TZ. That's TZ's, NSA's, etc. Wherever you're using their implementation of SSL, where you've got to implement a certificate on every machine. Once you even get past that it's still going to be particular and finicky. Banking sites are driven crazy by it every time we turn it on. It is trying to lock down outbound traffic so tightly that you get to sites that are already very security conscious. It's just a battle to get the traffic through. Intentional traffic, the traffic you want to get through, seems to be a problem. It will stop almost everything. Too much in fact. I understand the concept. It's just a little threatening. We just had a client sign off on a 6650. Then we send them a scope of work for implementing it. We specifically put a note in there in enormous bold type: "Note does not include SSL-DPI implementation". That is additional. The client responded that "That's the one piece I wanted you guys to do. I'm scared of it." He said, "We're scared of it," and I told him, "We're scared of it too." I said, "I don't know how long it's going to take. And it's going to turn your universe upside down for a week to 10 days to maybe two weeks." He said that he heard that this would be the case. My fear is that the client thinks that we'll say it will take four hours and then, when it turns into 40, try to make us give them the submission for free. Even tiny environments, for example, 10 user environments, once you turn it on, you will spend days tuning it. The last one we did took us 22 hours to get it perfect. We learned our lesson. We slotted in four to eight hours to do it and it took us 16 to 20. From a support perspective, if we're talking tech support I think Silver Partners, Gold Partners, Platinum, whatever level, should have a different number to call. End users can call tech support over at SonicWall if they've paid for support as part of their AGSS or whatever services they bought. The end-user can call, or we can call, however, I don't want to be calling the same line that an end user's calling. I don't want the same response time. I need a different level of expertise.

2020-07-05T09:38:12Z
author avatar
Real User

We have been facing issues with reporting. We use to have a free tool for reporting, but now there is a licensing fee.

2020-07-05T09:38:03Z
author avatar
Top 20Reseller

Not relating to this product specifically, but I think overall the company needs to think more broadly about security continuity across the entire security spectrum and integrate more security options with their solutions, like Cisco is doing. They need identity management products and DNS solutions to really complete the line of security. Because of the whole management system, there could also be improvement to their GMS, which is a system allowing you to manage an entire fleet of their firewalls via a central pane of glass. Today as more organizations as forced to working from home and the security perimeter is now the home, businesses need more affordable and scalable systems to manage and monitor numerous devices, more easily and push out updates through essential platforms.

2020-06-30T08:17:35Z
author avatar
Top 20Real User

The pricing is of this solution is high and could be reduced to make it more competitive. The monitoring is a little bit confusing.

2020-06-18T08:15:02Z
author avatar
Top 20Real User

Needs more robust self-help documentation along with examples and things to watch out for.

2020-04-02T21:32:00Z
author avatar
Top 20Real User

I would like to see lower antivirus pricing. So far I haven't found any situation that I needed anything else added/included.

2019-10-25T11:40:00Z
author avatar
Real User

Full monitoring obviously needs to be improved. We need full monitoring covered under the security licensing. The license should include reporting and monitoring. It shouldn't be an add-on, it should just go along with it. They should also make the monitoring easy to manage. Sometimes we need reports. We need some live monitoring decisions on how it's going down. We should take the live report from the SonicWall itself. I want to display the report under our monitor so I can monitor firewalls outside our area.

2019-07-08T07:42:00Z
author avatar
Real User

We would like to improve the rules configuration in SonicWall TZ. Sometimes the rules don't work. We cannot prove that the rules don't work. Maybe they can improve that. Sometimes you write a rule in SonicWall and users are not able to use YouTube, Facebook, or Instagram. Users can see YouTube or Instagram for a while, but five minutes later, they cannot visit the sites. The additional feature I would like to see included in the next release of this solution are analyzers. They can put it in the software, i.e which users are in which sites. We need to see which users are on which sites simultaneously. In this edition, it's hard to see. You can just see the IP address. FortiGate has 40 analyzers. Maybe SonicWall can put it in the license for at least three.

2019-07-01T07:59:00Z
author avatar
Real User

I currently have two issues from SonicWall. One issue is that the IP is not the public IP. Sometimes it moves to an alternate source and I have to refresh the new IP then we can proceed.

2019-07-01T07:59:00Z
author avatar
Real User

With SonicWall TZ, they should make the interface useful for the user. This needs to happen very soon because now the interface is not sufficient. When I need to apply some features, I get many tasks and too many to create objects.

2019-06-27T08:13:00Z
author avatar
Top 20Real User

This product has room for improvement in the cloud version. Also, the support could be better. Otherwise, SonicWall TZ is good for us. The additional feature I would like to see included in the next release of SonicWall is a better analyzer. That would be more helpful. Then people will stay with SonicWall.

2019-06-27T06:06:00Z
author avatar
Top 20Real User

In some places, we face problems, especially in the client VPN portion. There are certain places where we are not able to contact. We don't have the lease line, static IP addresses, or dynamic IP addresses. This is an area of concern. Another thing which I don't like about SonicWall is that it tries to bypass the resellers. That is not good. SonicWall suddenly calls the client, goes to them directly. That is not a good thing. They should consider working a bit more on their ransomware application.

2019-06-27T06:06:00Z
author avatar
Reseller

There can be an improvement in analysis and reporting. We need enhancement on the reporting side.

2019-06-26T05:26:00Z
author avatar
Real User

I don't have anything that I would say needs improving at the moment. The small business line has less PPS throughput and that's what you're going to lose on when you use WatchGuard. So they need to improve the throughput of the firewall in the small business line. Easy to explain : WatchGuard T70 vs SonicWall TZ600 Firewall Throughput : 4Gbps vs 1.9Gbps Price : 610€ vs 973€

2019-06-26T05:25:00Z
author avatar
Vendor

The support for this product has to be improved. With what I use, I don't really require any other features.

2019-04-23T08:23:00Z
author avatar
Real User

I find that the user interface for the product configuration needs improvement. It is not intuitive when you are trying to figure out how to get something done. An additional feature that I would like to see is reporting that includes metrics to give me more information about the number of viruses that it has actually detected and interrupted.

2019-04-23T08:23:00Z
author avatar
Real User

The hardware is outdated and very slow. They are far behind Sophos and even FortiGate when it comes to hardware.

2019-01-11T17:43:00Z
author avatar
Real User

I would like them to make the interface a little bit easier to use so you can find out where in the heck you're going instead of having to go to 15 different places to get something installed.

2018-08-07T08:19:00Z
author avatar
Real User

SonicWall Analyzer needs a different license. It would be good if Analyzer would be part of the stock license, so even if a layperson is getting the device, he or she doesn't forgets about ordering the Analyzer because it's already there. This is what we realized that over the last few months. We tried to pull some analysis, and without the Analyzer, we couldn't. Now, we are in the process of buying the additional license. It would have been better embedded from the beginning.

2018-07-12T09:32:00Z
author avatar
User

I'm not an IT guy. What I will say is that the market seems to be going to a cloud-supported, new generation of firewall products. I think that's probably going to be important to us, the next time around.

2018-02-25T10:17:00Z
Learn what your peers think about SonicWall TZ. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
524,194 professionals have used our research since 2012.