Check Point WAF as a Service (Advanced/PAYG, Free 7 Days or 1M Requests)
Check Point Software TechnologiesExternal reviews
91 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Strong ML-Based Protection, but Pricing, Setup, and Documentation Need Work
What do you like best about the product?
It can easily distinguish between attacks and legitimate traffic. It doesn’t require a lot of manual tuning, such as creating rules and policies. It protects using machine learning and AI, which helps prevent most attacks.
What do you dislike about the product?
I don’t like the pricing and the complexity of the initial setup. Log retention is limited, which creates issues with troubleshooting, and the documentation feels lacking—especially when it comes to real-world examples.
What problems is the product solving and how is that benefiting you?
It protects against SQL injection and XSS attacks that are often missed. It also reduces false positives, which means less overhead for the network security team. It helps stop automated botnets as well. Overall, it strengthens our network security.
Easy Cloud Setup with Strong Protection
What do you like best about the product?
The ease of set up and its strong protection. We were able to set up quickly in our cloud environment without a lot of complex configuration. The biggest plus is its minimal maintenance.
What do you dislike about the product?
UI feels a bit complex in the beginning, especially when we are trying to find specific settings or understand why something was blocked. Some features takes time to get used to.
What problems is the product solving and how is that benefiting you?
CloudGuard WAF helps us protect our web apps and APIs from common attacks and unwanted traffic without requiring a lot of manual effort. It also provides solid visibility into what’s happening with our traffic, which makes it easier to understand what’s being blocked and the reasons behind it.
Easy to Distribute, Great for the Cloud
What do you like best about the product?
I really like the simplicity of deploying Check Point CloudGuard WAF. It is cloud native and integrates well with AWS and Azure, automatically scaling when there is a traffic spike. I appreciate the centralized management that saves me time and the console where I can manage multiple environments from a single interface. The AI engine for threat detection is impressive and reduces the tuning work, learning from legitimate traffic and alerting you to attacks that might go unnoticed with other solutions. Check Point's support has always been quite responsive. Additionally, the updates for signatures and protection rules are automatic, which saves me valuable time.
What do you dislike about the product?
The thing that annoys me the most is the price. It is not cheap at all, and when I have to propose it to smaller clients, I often struggle to justify the cost compared to cheaper alternatives. The documentation could also be much better. Sometimes you look for how to do a specific thing and end up going around in circles among guides that don't answer your question or are outdated. Another thing that bothers me is that the console is sometimes slow, especially when you have to scroll through heavy logs or generate reports over long periods. The initial tuning of the machine learning requires patience. The first few weeks it generates some false positives until it learns the traffic well, and you have to keep an eye on it to avoid blocking legitimate users.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web applications, reduce false positives with machine learning, manage automated attacks, and centralize policy management in mixed cloud environments. It allows me to respond quickly to emerging threats and reduces the tuning workload.
Strong Security Features, but Setup and Management Can Be Challenging
What do you like best about the product?
I have been using the product for some time now, and I can honestly say it is highly effective against SQL injection, cross-site scripting, and bot threats. The automated rules make configuration appear very straightforward and simple.
What do you dislike about the product?
Configuring the system correctly requires a significant investment of time and a certain level of expertise, particularly when it comes to adjusting security rules to minimize false positives. Additionally, managing and reviewing policies can be somewhat cumbersome, as the interface is not always intuitive, especially when working with complex rule configurations or analyzing large volumes of traffic logs.
What problems is the product solving and how is that benefiting you?
As I have mentioned above the product is highly effective against SQL injection, cross-site scripting, and bot threats. The automated rules make configuration appear very straightforward and simple.
Easy Implementation and Management
What do you like best about the product?
I like that Check Point CloudGuard WAF is easy to implement and manage, which is a standout feature for me. It was also a bit faster to implement access control. I appreciate the search criteria as it doesn't require specific parameters for troubleshooting, making it a more straightforward process.
What do you dislike about the product?
Nothing to be disliked yet
What problems is the product solving and how is that benefiting you?
Check Point CloudGuard WAF was faster to implement for access control and easier to manage, protecting our company's web application and improving over our previous solution.
Simple and effective security solution
What do you like best about the product?
I like how it helps protect web applications from common attacks and gives clear visibility into traffic. The dashboard makes it easier to monitor activity and understand what’s being blocked.
What do you dislike about the product?
The initial setup and tuning can take some time to understand, especially when working with cloud environments. The interface also has a learning curve for new users.
What problems is the product solving and how is that benefiting you?
It helps protect web applications from common attacks and reduces the risk of security incidents. This improves application security and makes monitoring traffic easier from a central place.
Proactive Threat Prevention with Easy Setup
What do you like best about the product?
I appreciate the proactive and AI-driven threat prevention offered by Check Point CloudGuard WAF. It effectively detects and blocks threats like SQL injections, remote code execution, and automated bots without the need for traditional signature updates. This advanced AI-driven security extends protection against a wide range of threats, including zero-day exploits and API attacks, all with minimal effort. I find the product’s capability to ensure comprehensive threat coverage with reduced manual intervention to be highly valuable. Additionally, the initial setup process is very easy, which facilitates a smooth adoption and fast deployment.
What do you dislike about the product?
The steep learning curve is largely due to the sheer number of features and the extensive configuration needed before the system feels truly comfortable to use. With so many profiles, protections, exception paths, and tuning options available, it can be difficult to determine exactly what is necessary from the very beginning.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web applications by automatically detecting and blocking threats like SQL injections and API attacks, without needing traditional signature updates.
Strong Protection, Overwhelming Setup
What do you like best about the product?
I appreciate Check Point CloudGuard WAF's ability to provide a balance between strong protection and low maintenance. The product effectively shields our web applications on AWS by allowing straightforward rule setup for API protection, virtual patching, and blocking common web attacks. One of the standout features for me is the ability to apply virtual patches instantly, which is crucial when developers need more time to address vulnerabilities. I also find the auto-updates to threat signatures invaluable for keeping us protected against the latest threats. The learning mode is another advantage, as it quickly propagates policy changes, allowing our security measures to adapt swiftly. Switching to Check Point CloudGuard WAF from AWS WAF has resulted in stronger, more automated protection with enhanced visibility, which aligns perfectly with the time constraints we face. This product delivers a robust solution while minimizing the hands-on management typically required.
What do you dislike about the product?
I find the initial setup of Check Point CloudGuard WAF overwhelming. Upon logging in, the dashboard presents many menus, which can be quite daunting. Implementing a more intuitive feature such as a 'Connect Cloud Environment' could significantly ease this process.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web apps with virtual patching, strong API defense, and automatic threat updates, balancing strong protection with low maintenance. It also automates tasks that were too manual with AWS WAF, enhancing efficiency and visibility.
Quick and Effective Protection, but with Configuration Challenges
What do you like best about the product?
I love that Check Point CloudGuard WAF protects our web applications and cloud APIs against a wide range of threats, which is crucial in today's digital environment. I especially value its ability to prevent bot attacks, ensuring the secure operation of our applications, in addition to effectively protecting us against scammers. I find that the implementation is quick and simplified, which is a great benefit by minimizing the time and effort needed to get the system up and running. I am also impressed with its multi-platform security that provides solid protection, and the high protection rate it offers highlights its effectiveness. Additionally, the initial configuration of Check Point CloudGuard WAF is very simple and suitable for users of different experience levels, which greatly facilitates the integration process.
What do you dislike about the product?
Possible bottleneck in the performance of the computer's processor and poor management of configurations. It overloads the computer's CPU a lot despite the hardware's power.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web applications and APIs in the cloud from threats, including fraudsters and bots, with quick deployment and multi-platform security.
Effortless Deployment and Robust Threat Prevention with CloudGuard WAF
What do you like best about the product?
CloudGuard WAF’s biggest strengths are strong automated threat prevention, multi-cloud support, and ease of deployment for modern application environments.
What do you dislike about the product?
Trial periods and evaluation phases might be limited, It may longer trials or better QA/testing support before committing. And the rest parts are good.
What problems is the product solving and how is that benefiting you?
Uploaded files can hide malware or malicious payloads; CloudGuard’s “file security” inspects uploads and blocks dangerous content before it reaches your application. And traditional WAFs often require manual tuning of rules and signatures a tedious, error-prone task. CloudGuard’s AI-driven contextual detection and automated policy/rule management reduce manual maintenance and cut down false positives.
showing 21 - 30