Threater (64-bit x86)
Threater | Threater Enforce Build 254Linux/Unix, Ubuntu 22.04 LTS - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
ThreatBlockr has greatly reduced our public attack surface
What do you like best about the product?
Ease of use, provided dynamic threat lists are constantly updated, simple geo blocking. We 've done extensive geo blocking and malicious traffic at our edge probably dropped by 90%
What do you dislike about the product?
Sometimes the threat lists can be overzealous blocking legitimate IPs. Would like to see improved handling of domain allow/block lists. It's a multi-step process to do a DNS lookup on a domain then add the IPs to a block/allow list.
What problems is the product solving and how is that benefiting you?
ThreatBlockr has greatly reduced the malicious traffic to our network edge. It filters out a lot of noise and makes monitoring for threats easier.
- Leave a Comment |
- Mark review as helpful
ThreatBlockr Works
What do you like best about the product?
ThreatBlockr works without maintenance; blacklists are updated automatically. ThreatBlockr support is very responsive.
What do you dislike about the product?
I dont have anything that i dont like about ThreatBlockr
What problems is the product solving and how is that benefiting you?
ThreatBlockr keeps our network safe my denying bad guys from even seeing our network
One of the best appliances you never knew you needed!
What do you like best about the product?
We've had a ThreatBlockr device ever since I arrived at my organization almost 7 years ago. It was brought in by my now senior manager and I would never deploy another site without one.
This appliance allows such an easy way to do geoblocking, it is incredible, point, click, save. Need to see if the country is blocked? No problem just type it in.
Allows me with pinpoint accuracy to adjust what I want in and out of my network before it even gets to my firewall with simple sliders. I get full control over how much risk I want to take with which ASNs. Need to allow some ASN traffic but want to make sure a slight deviation in the threat score blocks it? No problem, you adjust the slider from 0 to 100 or -100.
Solid insights on threat levels of malicious IPs/Websites.
Whitelist/Blacklisting lists are super simple to use.
Plus ThreatBlockr has a ton of out-of-the-box content lists you can link to.
I've also dabbled in having a dynamic list linked to a Google doc that I can update an IP or Website I want blocked into the Google doc and it transverses to the policy seamlessly.
With the GMC portal I can get single pane of glass review of both my devices across both our ISPs in front of our HA'd firewalls.
Support is top-notch as well, which is great, but I've rarely had to use it.
Updating is a breeze!
This appliance allows such an easy way to do geoblocking, it is incredible, point, click, save. Need to see if the country is blocked? No problem just type it in.
Allows me with pinpoint accuracy to adjust what I want in and out of my network before it even gets to my firewall with simple sliders. I get full control over how much risk I want to take with which ASNs. Need to allow some ASN traffic but want to make sure a slight deviation in the threat score blocks it? No problem, you adjust the slider from 0 to 100 or -100.
Solid insights on threat levels of malicious IPs/Websites.
Whitelist/Blacklisting lists are super simple to use.
Plus ThreatBlockr has a ton of out-of-the-box content lists you can link to.
I've also dabbled in having a dynamic list linked to a Google doc that I can update an IP or Website I want blocked into the Google doc and it transverses to the policy seamlessly.
With the GMC portal I can get single pane of glass review of both my devices across both our ISPs in front of our HA'd firewalls.
Support is top-notch as well, which is great, but I've rarely had to use it.
Updating is a breeze!
What do you dislike about the product?
My biggest gripe is when the Threatblockr is restricting a site, there is no splash page like OpenDNS/Umbrella. Also if Im Geoblocking a certain country and the website is coming from there and I run a search inside the GMC, it won't tell me if it is in a blocked country or not, kind of slows me down.
Otherwise the interface is rock solid.
Otherwise the interface is rock solid.
What problems is the product solving and how is that benefiting you?
Geoblocking is such a great 1st line defense. Then the ASN sliders so I can adjust things as I see fit, not how the vendor does or would that I see with other products. Its the perfect appliance for the practicing of defense in depth and Zero Trust.
ThreatBlockr Just Works
What do you like best about the product?
Adding sites to our allow list is simple, taking only a minute or so, and the change takes effect immediately.
What do you dislike about the product?
I would love to be able to add sites by domain name, rather than IP address, if I had to find a complaint.
What problems is the product solving and how is that benefiting you?
We have staff located globally, so any extra layer of security that we can implement, especially ones that may prevent a ransomware infection, are extremly valuable.
ThreatBlockr is an extensible and easy to manage shun solution
What do you like best about the product?
ThreatBlockr supports integration with open source IP and domain block lists, but also supports premium feeds. This allows us to leverage integrations with other soltuions we are already using for other purposes.
What do you dislike about the product?
The blocking is IP based. For today's Internet, where a single IP my host 500 websites, or where CDNs means that IPs can change in an instant, this is a big weakness. But, due to how the technology works and how it fits into the network, it may be something that can never be "fixed".
What problems is the product solving and how is that benefiting you?
A shun device sits at the edge of the network, outside the firewall. It should be efficient and fast. It should introduce minimal latency and barely be a "bump in the wire". ThreatBlockr blocks thousands fo threats a day with few false positives. It keeps traffic from ever reaching our firewall which increases its efficency. It is a vital part of our layered defenses.
Great attack surface reduction
What do you like best about the product?
Easy to configure, automatic updates. Geo and service blocking to significantly reduce load on edge devices.
What do you dislike about the product?
Logs do need to be set up on a separate host. The rolling log is only a few hours long, so you will not be able to see much unless you export them somewhere else.
What problems is the product solving and how is that benefiting you?
Threatblocker significantly reduces the load on edge firewalls by geoblocking and allowing customized service profiles that only allow certain sources/IPs to hit your externally facing systems.
Self or guided managed security appliance that helps minimize logs
What do you like best about the product?
While your SIEM may alert you of threats, Threatblockr allows you to retrieve threat intel from TAXII/STIX feeds and blocks it. Most firewalls do not work with threat feeds unless they are URL-based. Threatblockr is one of the few devices that will pull in feeds so that you can block near real-time threats. They also include a premium threat feed from Webroot at no additional cost.
What do you dislike about the product?
There are two managment interfaces, a local one and a cloud-based site. Initially, it gets a little confusing on which site handles configuration and interface changes. Reporting needs work. There isn't a way to run on-demand reports. You have to schedule reports in advance (monthly will run on the 1st of every month, weekly runs at midnight on Sunday, etc.) . Sometimes, you just want to run a report for a specified date range, which isn't currently possible.
What problems is the product solving and how is that benefiting you?
Threatblockr can do what most firewalls can't, making your logs less noisy. In a nutshell, it saves time. In addition, it blocks traffic from your threat intel feeds, which is the best feature.
Keeps the bad guys out
What do you like best about the product?
Keeps the bad guys out. My weekly report from firewall has dropped from hundreds of attempts to none for outside the USA.
What do you dislike about the product?
We had to add some exceptions for sites hosted on AWS, etc where the IP would sometimes be outside the USA.
What problems is the product solving and how is that benefiting you?
Support is great if you have questions when had sites people couldnt access. prevents access from outside USA.
Easy console management across many devices!
What do you like best about the product?
Reporting, ease of management and the protection provided.
What do you dislike about the product?
Honestly I Haven't experienced any dislikes.
What problems is the product solving and how is that benefiting you?
Mailware and ransomware
Intuitive and powerful protection
What do you like best about the product?
Very easy to deploy, manage and upgrade.
What do you dislike about the product?
I haven't seen any downsides. Every network needs technology like this to protect its assets.
What problems is the product solving and how is that benefiting you?
It decreases untrusted traffic to our network. It protects our systems from accessing compromised networks.
showing 11 - 20