Sign in
Sign in
or
Create a new account
Agent Mode
Categories
Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Check Point Cloud Firewall (formerly CloudGuard Network Security)

Check Point Software Technologies

Reviews from AWS customer

36 AWS reviews

External reviews

255 reviews
from and

External reviews are not included in the AWS star rating for the product.

5-star reviews ( Show all reviews )

    Viral Shaa

Cloud security has unified hybrid policies and now protects critical energy workloads continuously

  • April 30, 2026
  • Review from a verified AWS customer

What is our primary use case?

My usual use cases for Check Point Cloud Firewall (formerly CloudGuard Network Security) involve onboarding as an energy company, where it acts as the cloud-native security platform that extends the traditional firewall and threat prevention capabilities into public cloud environments like AWS, Azure, or GCP. We set up a virtual security gateway inside our cloud network to provide unified policy management, advanced threat prevention, segmentation for the network, and visibility across the cloud and system. From an administrator standpoint, it protects the workload, inspects traffic, and enforces the necessary rules. Day-to-day, my responsibilities include logging, monitoring, and policy control for Check Point Cloud Firewall (formerly CloudGuard Network Security), making it a strong fit for our organization, especially in the energy sector where we need critical systems to stay up to date throughout twenty-four seven.

For secure cloud migration, Check Point Cloud Firewall (formerly CloudGuard Network Security) integrates seamlessly across AWS, Azure, and GCP, supporting auto-scaling, native logging, and automation, making it a strong fit for our organization while modernizing our infrastructure and maintaining strict compliance requirements. Using this tool helps us avoid complications like needing to prove compliance for SOC 1 or SOC 2, as these platforms are already compliant.

What is most valuable?

I would say Check Point Cloud Firewall (formerly CloudGuard Network Security) is valuable due to its hybrid cloud security features. It offers granular policy management across the on-premises and cloud environments, giving administrators consistent control for configuration drift. We need to change the policy and the inbound and outbound traffic settings, indicating what traffic must be blocked or allowed, and this capability with Check Point provides significant input into our security strategy.

Check Point Cloud Firewall (formerly CloudGuard Network Security) provides unified security management across both hybrid clouds and on-premises environments. Unified security management affects my security operations positively, as we maintain critical systems on the cloud that require strong security and air gap networks. This cloud-native routing and policy installation helps close gaps in protecting critical applications and environments from exposure to the public cloud.

From an administrator's perspective, Check Point Cloud Firewall (formerly CloudGuard Network Security) enhances our organization with clearer and more intuitive logging, making decisions easier to understand without deep investigation. In the CloudGuard UI, I can see which threats have triggered alerts, and this information is available on the unified dashboard that provides details of the threat analysis upon alert. As a small team, we log into the console to check specific alerts for high or low network usage or machine shutdowns. If needed, I tune the configuration policy, and the visualizing tools with reporting functionality simplify tracking changes made on the firewall, including the relevant source IP or device names. We ingest logs into our SIEM for detailed oversight, which allows us to monitor any administrative changes.

Check Point Cloud Firewall (formerly CloudGuard Network Security) has significantly reduced our organizational risk. We clearly understand our threat landscape and the associated risks. Onboarding the CloudGuard solution directly into our cloud environment has significantly lowered the risks throughout the network and it is easy to launch. When we assess our security posture with third-party assessments, we gain granular visibility into our network pre- and post-CloudGuard installation, showing how we have addressed significant risks and secured vulnerabilities.

What needs improvement?

I find troubleshooting a bit challenging with Check Point Cloud Firewall (formerly CloudGuard Network Security); one area needing improvement is log clarity, as sometimes policy installation takes longer than expected, and resolving cloud-native routing conflicts requires advanced knowledge due to the differences in how AWS and GCP operate.

The UI is significantly good and user-friendly, but adding more advanced features to the reporting perspective, especially concerning administrative changes, would be beneficial. However, these points are not deal-breaking feedback; they would just be beneficial for future releases.

For how long have I used the solution?

I have been experienced with Check Point Cloud Firewall (formerly CloudGuard Network Security) for five to seven years throughout my career because I need to check the logs for what is coming in, setting up the policy, and I have been experienced with the firewall on my current job as well. Any traffic that needs to be allowed or any application that needs to be allowed is configured through the firewall. The inbound and outbound traffic to the network is configured through the firewall.

Specifically, I have been working with Check Point Cloud Firewall (formerly CloudGuard Network Security) for four to five years.

What do I think about the stability of the solution?

For reliability, I note that Check Point Cloud Firewall (formerly CloudGuard Network Security) maintains ninety-nine point nine percent uptime and availability, providing us nearly a hundred percent uptime with constant traffic monitoring. Although it may occasionally experience downtime, it remains strong in both reliability and scalability.

Regarding improvements in reliability and stability, I do not see any need as everything performs well. No improvements are necessary in the areas of reliability and stability; they have been consistently good.

What do I think about the scalability of the solution?

Regarding scalability, Check Point Cloud Firewall (formerly CloudGuard Network Security) proves efficient; I find no issues scaling up as our growing company sees increased traffic. It is capable of managing the increased load and performs well as our needs expand.

How are customer service and support?

I have opened a troubleshooting ticket for Check Point Cloud Firewall (formerly CloudGuard Network Security), and so far, I have had a positive experience; the support team usually responds within twenty-four hours, and they escalate cases, providing instant feedback for priority issues. In urgent situations, I can call and receive support promptly, receiving recommendations or guidance for the issues we encounter.

I would rate the technical support of Check Point Cloud Firewall (formerly CloudGuard Network Security) as eight out of ten.

Which solution did I use previously and why did I switch?

On the POC, I looked at SonicWall and Palo Alto firewalls as competitors. We found Check Point Cloud Firewall (formerly CloudGuard Network Security) to be better because it has a robust threat prevention system, and onboarding is straightforward compared to SonicWall. We are a small security team, and we prefer not to rely on a security operation center that would help narrow down issues. It takes just a few clicks to bring the firewall up and running, allowing us to set up policies without requiring complicated knowledge or extensive training. In contrast, using Palo Alto and SonicWall requires specific training for policy creation.

I have worked with Palo Alto and SonicWall firewalls but we found that Check Point Cloud Firewall (formerly CloudGuard Network Security) offers a better pricing standpoint and security solution overall.

How was the initial setup?

I participated in the initial setup of Check Point Cloud Firewall (formerly CloudGuard Network Security). The initial setup of Check Point Cloud Firewall (formerly CloudGuard Network Security), from an integration standpoint, is straightforward. We began with vendor searches, narrowing down to three candidates, including SonicWall and Check Point.

After moving forward with Check Point Cloud Firewall (formerly CloudGuard Network Security), we contacted them to set up a cloud VM installation, which is quite straightforward. Coordination with their representative involves scheduling calls for setting up policies and traffic management, and we test it in the QA environment before moving to production with all necessary policy modifications.

What about the implementation team?

I continue to collaborate with the Check Point Cloud Firewall (formerly CloudGuard Network Security) team to ensure everything runs smoothly, and there is always room for improvement, especially as we reach out to them for support or new features.

What's my experience with pricing, setup cost, and licensing?

We have encountered a few subscription-based licensing models for the virtual gateway and security enablement. We have opted for a three-year contract with fixed pricing for the CloudGuard cost structure, which has enterprise-grade capabilities. Although the pricing is slightly high for smaller organizations, it offers enterprise-level security, indicating a need for improvement in the pricing model.

Which other solutions did I evaluate?

In making the choice between the three products, we prioritize managing risk and the threat landscape, along with compliance and reporting capabilities. Pricing is the first consideration, followed by how well each solution meets our compliance needs, and finally, the reporting capabilities to match enterprise-level requirements.

What other advice do I have?

I have given Check Point Cloud Firewall (formerly CloudGuard Network Security) an overall review rating of ten out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)

    Thanos Constantopoulos

A full-featured firewall that maintains consistency and boosts protection

  • February 04, 2025
  • Review from a verified AWS customer

What is our primary use case?

I need to protect cloud security for my company or customers. I protect their cloud infrastructure and any applications they have on the cloud. This is the main concept of cloud networking, where we use Check Point Firewalls in the cloud.

How has it helped my organization?

It makes my life easier. I have on-prem and cloud firewalls. I can use the same policies in both places.

What is most valuable?

It is a full-featured firewall on the cloud. The best feature is that it is the same software used on-premises. It's like having a full-blown firewall in CloudGuard.

It is the same policy used on-premises, seamlessly pushed to the cloud. I have the same principles in the cloud. Security features allow control in areas usually not available, filling the gap with firewalls to secure operations. Overall, it greatly improves posture and internal operations.

Network Security provides us with unified security management across hybrid and cloud as well as on-prem. Once again, this is about having the same policies. It's seamless. There are the same configurations, the same principles, et cetera.

It's helped us reduce organizational risk and improve security posture. We have robust security on the cloud to secure everything. It helps improve posture and internal operations.

What needs improvement?

I would focus on the implementation in the cloud, as it relies on third-party vendors like Azure and AWS. It's not seamless; the solution should be more straightforward for complicated environments.

For how long have I used the solution?

I have been using it for the last two to three years actively.

What do I think about the stability of the solution?

It is stable. I did not experience any downtime, and I hope I won't have any.

What do I think about the scalability of the solution?

Regarding scalability, I set up a firewall in the cloud and left it operating. Nothing happens to it without intervention. We perform minor and major upgrades, and it works seamlessly. It is very good.

How are customer service and support?

I have a very good relationship with customer support. They are like my best friends - especially those on level three and four. How would I would rate them a solid eight out of ten.

Which solution did I use previously and why did I switch?

I did not use a different solution previously. We chose this over options offered by our cloud vendors since the policy management is strong. I don't have to redo everything from scratch. Also, since I have been using Check Point for many years, it was very easy for me to use the same product that I use on-prem in the cloud.

What's my experience with pricing, setup cost, and licensing?

The licensing is bit pricey. Check Point is expensive, however, with the features and capabilities, I can justify the cost.

Which other solutions did I evaluate?


What other advice do I have?

I'm an end-user, partner, and reseller of CloudGuard.

The same features used on premises apply to the cloud. It makes my life easier with consistent policies and configurations. It's a fair option.

Overall, I would give the product an eight out of ten.

    reviewer2379444

Offers straightforward licensing and excellent technical support

  • March 15, 2024
  • Review from a verified AWS customer

What is our primary use case?

My main use cases for CloudGuard Network Security are to scale the technology for protecting and filtering traffic within AWS and Azure environments.

The main challenge I was looking to address by implementing CloudGuard Network Security was the need to establish a firewall on our cloud perimeter for enhanced security.

How has it helped my organization?

The flexibility to rebuild the firewall in CloudGuard Network Security has helped our organization eliminate downtime.

CloudGuard Network Security has improved our organization by allowing us to easily deploy firewalls from the cloud wherever we might need them.

What is most valuable?

The most valuable feature I have found in CloudGuard Network Security is the flexibility to rebuild the firewall as needed.

What needs improvement?

CloudGuard Network Security could be improved in the area of upgrading in place.

For how long have I used the solution?

I have been working with CloudGuard Network Security for five years.

What do I think about the scalability of the solution?

The scalability of CloudGuard Network Security is very good and we can scale it as needed.

How are customer service and support?

Check Point's service and tech support are very good, especially since we have access to their Diamond-level support. I would rate the support as a ten out of ten.

How would you rate customer service and support?

Positive

What's my experience with pricing, setup cost, and licensing?

I find the pricing and licensing of CloudGuard Network Security to be pretty straightforward.

What other advice do I have?

The main benefit we have seen from using CloudGuard Network Security is the ability to filter traffic by URL. We realized these benefits approximately six months after deployment.

Unified management of the firewall has positively affected our security operations by making it easy to manage from one place.

My advice for those evaluating CloudGuard Network Security is to remember that licensing is critical, so ensure that central licensing is configured properly.

Overall, I would rate CloudGuard Network Security as a ten out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)

    reviewer2350659

Does what it is designed for and matches what we have on-prem

  • February 26, 2024
  • Review from a verified AWS customer

What is our primary use case?

We are using it for perimeter inbound and outbound detection.

It is running in an EC2 instance in AWS.

How has it helped my organization?

For the move to the cloud, normally, you adopt a cloud solution, but big companies like ours have to control the roles in place and keep the standards that we have on-prem. We adjust it to the way the cloud works, but we still have the traditional firewall, similar to on-prem. We have the same management capabilities. We have the logins. It is just a central way of managing.

It saves time for us. We adopted the cloud solution as much as we could, but in terms of security, we wanted to keep the same method that we were using for security, and we wanted to use the knowledge that we already had.

What is most valuable?

It matches what we have on-prem. We kept the same management and the same functionality that we were having on-prem. It has simplified things for us because there is no new dashboard to touch.

What needs improvement?

The relationship between AWS and Check Point could be better. We had issues related to the type of instance and how it interconnects with AWS or cloud-native solutions. We overcame the pain points that we had, and now, AWS is evolving in a way that will facilitate how Check Point works. Our pain points were minimized, but they were there.

There could be more capabilities around the management protocol itself. We deploy the boxes very easily with the software. We want automation. We are already using it to deploy instances in AWS regardless of whether it is Check Point or something else we use. Integration is already there, but there is a possibility to have more functionalities. We are in a good state, but there can be new features.

For how long have I used the solution?

I have been using CloudGuard Network Security for two years.

What do I think about the stability of the solution?

It is tricky to distinguish because we have the software and we have the instance. There is the tricky part of AWS not sharing some information around the instances where the software runs and then saying that it is a software issue and not sharing deeper details. Check Point struggles with having that information directly from AWS.

So, there is room for improvement if Check Point wants to be a native-use solution in AWS, for example, which is our main provider. It is tricky, and I understand. It is also about how Amazon or AWS manages their data centers. They do not disclose some information. In terms of throughput, performance, etcetera, they do have the numbers, but when it comes to some issues, nobody can explain or when an issue is from a network background, there is no explanation. Finger-pointing is not a solution.

There should be more sharing of information between them directly, not involving the customer. In the end, we were able to sort things out. We had to read between the lines. They were not disclosing exactly what was the problem. Check Point did not see any issues with the software, and in the end, it was about how the instances in a shared environment inside the AWS run and how they control the resources on each virtual machine that the customer runs. That is their way of doing business. AWS wanted to run it on a bigger box. In the end, I was able to overcome all the issues with a different instance type that was never proposed to us. It was a matter of the CPU generation that was being used on the instance. It was not the fact that the machine was not able to cope with it.

What do I think about the scalability of the solution?

That goes back to how the AWS services run because the software runs in any virtual box. It is exactly the same software that you can use in a physical box. We never had a need to use Autoscale so far. We have tested Autoscale. We have seen it working, but we never had the need. We are in a stable environment, and we foresee when it is needed ahead of time to avoid any bottleneck. It has been running without issues.

We have 12 active AWS versions worldwide. Three of them are the main data centers that we use. In every data center where we have AWS, we have at least different architectures of products, so our environment is quite big.

The management is standardized between all regions. They run exactly the same way with exactly the same purpose. It is standardized. We define the architecture and when there is a need, we have the solution already available.

How are customer service and support?

Over the last three years, I rarely used them. We did not face issues that needed support from Check Point. We were able to fix all the issues we had because there was either an upgrade available or a knowledge article available showing how to fix it. All our support cases are more around RMA.

What was our ROI?

The added value is not the software itself. The added value is the way we can easily change the capacity of a virtual box that we run the software on. Keeping the same software, we can change the VM capacity to higher or lower depending on the needs. The return on investment is the simplicity of being flexible in that way.

What's my experience with pricing, setup cost, and licensing?

It is the most expensive part of the product. There is a lot of room for improvement. Security comes with a price, but it is still a big chunk just for the service.

Which other solutions did I evaluate?

We tested the native solution of AWS, but we decided to go ahead with our own existing solution on-prem being reflected in the cloud environment. We already had the knowledge and expertise internally. The central management platform and logging were already there. A multitude of features that we were already using were common.

In terms of ease of use, everything in the cloud is new, so there is a learning curve. They are adjusting the layer features in AWS native tools, but Check Point has the advantage of knowledge. We already had familiarity with it, and Check Point itself has a good knowledge of the market. They are experienced in security solutions.

We have not been that exposed to AWS. We are very happy with the availability of Check Point and so forth. So far, when the biggest threats came, Check Point always reacted faster than any other.

What other advice do I have?

There is no real issue with the software itself. It does the job. It does what it was designed for. I can rate it a ten out of ten because it is exactly like the on-prem software physical appliance. There is no difference for us.

    reviewer1355001

Fair price, good support, and effective for security and operational efficiency

  • May 11, 2023
  • Review from a verified AWS customer

What is our primary use case?

We use it for network protection. We're using its latest version.

How has it helped my organization?

We're benefiting from the solution. We're protecting all of our assets with it. It's a very good security solution. We don't face any big challenges or problems.

What is most valuable?

Security effectiveness is the most valuable feature. Operational efficiency, reporting, and support are also good.

What needs improvement?

The SD-WAN could be better.

For how long have I used the solution?

I have been using this solution for more than ten years.

How are customer service and support?

Their support is very good. I'd rate them an eight out of ten.

Which solution did I use previously and why did I switch?

We have been using the same solution from the beginning.

How was the initial setup?

The initial setup is very easy. It took two to four hours.

We have a hybrid cloud deployment. We have Azure and AWS.

What about the implementation team?

We used an integrator. Our experience with them wasn't great.

What was our ROI?

We've seen an ROI with this solution.

What's my experience with pricing, setup cost, and licensing?

It's not very expensive. It isn't very cheap either. Its price is okay. It depends on how much money you have. It might be expensive for some companies.

Its licensing is on a yearly basis.

Which other solutions did I evaluate?

We evaluated solutions from Forcepoint, Cisco, and Fortinet. We went for it because of its security effectiveness and operational efficiency.

What other advice do I have?

It's the best solution to use. You can trust it. We don't have any issues with it. It works fine.

Overall, I'd rate it a ten out of ten.

    Cloud network security manager

Easy-to-use threat prevention and cloud network security solution with great functionality!

  • January 21, 2020
  • Review from a verified AWS customer

My company has been using Check Point's CloudGuard IaaS security gateway and security management for advanced threat prevention, cloud network security and secure VPN connectivity between my corporate network and my AWS environment (tens of VPCs).
It is easy to learn, easy to deploy, easy to maintain, has the highest threat catch-rate to the best of my knowledge (and I compared it extensively with competitors) and provides extremely high value to me, my team and my company.
It is also natively integrated with AWS services, including VPC Ingress Routing, Transit Gateway, VPC Flow Logs, Security Hub, etc., making for a great user experience and definitely "better together" with AWS.

Thanks Check Point!

showing 1 - 6