Sold by: Forcepoint
Deployed on AWS
Forcepoint Next Generation Firewall (NGFW) gives you the scalability, protection, and visibility you need to more efficiently manage your network and quickly respond to threats, incidents, and opportunities from transformative technologies.
4.4
Overview
Forcepoint NGFW (Next-Generation Firewall) delivers unparalleled scalability, robust protection, and comprehensive visibility to efficiently manage and secure traffic flowing into and out of your AWS network, as well as within various components of your cloud environment. By integrating advanced application control, sophisticated evasion prevention, and a leading Intrusion Prevention System (IPS) into a unified solution, Forcepoint NGFW streamlines security management across your data center, office, and branch firewalls from a single console. Independent testing highlights Forcepoint NGFW's superior capability in stopping Advanced Evasion Techniques (AETs) compared to other security devices, its effectiveness in blocking vulnerability exploits, and its sandboxing technology for identifying zero-day attacks and advanced malware. Additionally, Forcepoint NGFW offers robust protection against the exfiltration of sensitive data, ensuring a comprehensive defense for your network.
Highlights
- Effortlessly extend your network to AWS cloud via secure virtual private network (VPN) gateway connecting remote sites, branch offices, and more.
- Safeguard your virtualized network against advanced attacks with dynamic security controls application layer exfiltration security and advanced evasion techniques (AETs) identification.
- Express your business processes as technical controls quickly and naturally with Forcepoint's unique Smart Policies that can be updated globally in seconds, not minutes or hours.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
OtherLinux 7.1.12
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
c6i.xlarge Recommended | $0.80 |
c5.18xlarge | $14.40 |
c5n.4xlarge | $3.20 |
c6in.8xlarge | $6.40 |
c7i.8xlarge | $6.40 |
c5n.2xlarge | $1.60 |
c6i.8xlarge | $6.40 |
c6i.16xlarge | $12.80 |
c4.xlarge | $0.80 |
c5.9xlarge | $7.20 |
Vendor refund policy
You may terminate the instance at any time to stop incurring charges. There is no refund for charges incurred prior to termination.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Additional details
Usage instructions
To perform the initial configuration, use SSH and the username 'aws', then type 'sudo sg-reconfigure'. You can also give initial contact file engine.cfg via userdata encoded in base64. For additional information and configuration instructions see https://help.forcepoint.com/docs/ngfw/howto/ngfw_ht_deploy-ngfw-in-aws_en-us.pdf
Support
Vendor support
Your subscription includes Forcepoint Premium Support, with 24x7 support for critical issues, Severity 1 response targets of 45 mins or less, and an online technical support site offering extensive support resources and request tracking.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Forcepoint
By Palo Alto Networks
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Intrusion Prevention System
Leading Intrusion Prevention System (IPS) integrated into unified security solution for threat detection and prevention
Advanced Evasion Technique Detection
Capability to identify and stop Advanced Evasion Techniques (AETs) with superior performance compared to other security devices
Application Layer Security
Advanced application control with application layer exfiltration security and dynamic security controls
Sandboxing and Malware Analysis
Sandboxing technology for identifying zero-day attacks and advanced malware threats
Centralized Management Console
Unified management console for streamlined security administration across data center, office, and branch firewalls
AI and Machine Learning-Powered Threat Prevention
Artificial intelligence and machine learning-powered threat prevention leveraging intelligence from 70,000+ global customers to detect and mitigate zero-day exploits, DNS threats, and web-based threats 180x faster than traditional platforms.
Layer 7 Application Classification and Control
Patented Layer 7 classification enabling granular traffic control and visibility based on workloads, users, and applications with precise network traffic management.
Cloud-Delivered Security Services
Cloud-Delivered Security Services (CDSS) powered by Precision AI and Unit 42 Threat Research for advanced threat prevention and detection of zero-day attacks and unknown command-and-control traffic.
Infrastructure as Code and Automation
Support for automated deployment, policy enforcement, and account management workflows through APIs, CloudFormation, and Terraform integration.
AWS Native Service Integration
Seamless integration with AWS services including AWS Firewall Manager, CloudWatch, Kinesis Firehose, and Strata Cloud Manager for centralized management and real-time monitoring.
Intrusion Prevention System
Intrusion prevention (IPS) capabilities to detect and block malicious network traffic and attacks.
Data Leak Prevention
Data Leak Prevention (DLP) functionality to prevent unauthorized data exfiltration and breaches.
Geo-IP Blocking
Geo-specific policy enforcement that blocks traffic to and from specified countries based on geographic location.
AI-Powered Threat Intelligence
Advanced filtering powered by AI-driven threat intelligence from FortiGuard Labs to identify and block risky connections.
Dynamic Policy Management
Dynamic security policies that use cloud metadata tags to automatically follow cloud workloads without requiring static IP updates.
Standard contract
No
No
No
Customer reviews
Food Production
Firewall for advanced threat protection with deep packet scanning capabilities
Reviewed on Nov 28, 2024
Review provided by G2
What do you like best about the product?
Forecepoint provides Advanced threat protection, intrusion preventation and secure web application scanning. Forecpoint Policies are flexible and rules can be created and modified as per business requirements. It has low latency and does not impact the network performance
What do you dislike about the product?
Limited customization
Advance configuration options are complex and requires subject matter expert to customize the rules.
Advance configuration options are complex and requires subject matter expert to customize the rules.
What problems is the product solving and how is that benefiting you?
Forecepoint protects advanced level cyberattacks from external attackers and cyberthreats like ransomware , zero-day exploits and data exfiltration etc and helping business to secure our digital assets.It provides real-time network visibility and attack surface to improve company security posture , ensure compliance and reduce risk of unahuthroized access and data breaches
Sanket M.
Forcepoint NGFW
Reviewed on Jan 22, 2024
Review provided by G2
What do you like best about the product?
Forcepoint most secure feature is, we are not able to take GUI acces via web browser.
As per other firewall vendor the forcepoint is easy to implement and configure, also user freindly dashboard.
if we want to integrate with the any tool we are received articles regarding the integration on support portal.
TAC Support is also user freiendly and valuable quick suport.
As per other firewall vendor the forcepoint is easy to implement and configure, also user freindly dashboard.
if we want to integrate with the any tool we are received articles regarding the integration on support portal.
TAC Support is also user freiendly and valuable quick suport.
What do you dislike about the product?
SMC Dashboard is like older one.
as checked with the other vendor forcepoint is very costly in price.
as checked with the other vendor forcepoint is very costly in price.
What problems is the product solving and how is that benefiting you?
facilitate the secure connectivity etween user to the office connection.
provides vissibility of user traffice in proper manner.
provides vissibility of user traffice in proper manner.
Nitin K.
Forcepoint NXGEN - Future firewall
Reviewed on Nov 10, 2023
Review provided by G2
What do you like best about the product?
Forcepoint NGFW provides ultimate UTM security to the organisation perimeter network. IT comes with SD wan capablities which seamless network flow and security over the internet. We can monitor and control firewall via signle console. In consolve we can add different versions and different models of firewall which is additional feature.
What do you dislike about the product?
Contact to the Management server with firewalls sometimes fails that we need to do again and again via OTP.
What problems is the product solving and how is that benefiting you?
Forcepoint firewall is best SD-WAN and firewall solution. We can implement this as a router with SD-WAN and Firewall by adding multiple ACL's.
We can manage centralised logs of all the firewall in internal server or we can assign dedicated log server to all the firewalls.
We can manage centralised logs of all the firewall in internal server or we can assign dedicated log server to all the firewalls.
Bruno C.
NGFW Network Security solution
Reviewed on Oct 30, 2023
Review provided by G2
What do you like best about the product?
Forcepoint SASE Platform has some occasional performance issues. It offers security. It consistently improves and becomes more mature, over time. There are some glitches that block websites while ensuring overall security.
What do you dislike about the product?
The lack of application-based protection support and troubleshooting capabilities.
What problems is the product solving and how is that benefiting you?
The Forcepoint SASE Platform solves our network security concerns. This benefits our business by providing protection against cyber threats but does not ensure data integrity.
Komi David A.
Blocks potentially harmful websites
Reviewed on Oct 20, 2023
Review provided by G2
What do you like best about the product?
The initial implementation posed some difficulties. But the security coverage it provides is above expectations. The Next Gen features are exceptional and fulfill our requirements.
What do you dislike about the product?
The lack of application-based protection support which is something that is very essential for cyber threat protection makes Forcepoint somewhat questionable choice.
What problems is the product solving and how is that benefiting you?
Forcepoint SASE Platform solves the need for NGFW Network Security. It is safeguarding our networks, against cyber threats. This ensures our data remains protected.