Proactive Threat Prevention with Easy Setup
What do you like best about the product?
I appreciate the proactive and AI-driven threat prevention offered by Check Point CloudGuard WAF. It effectively detects and blocks threats like SQL injections, remote code execution, and automated bots without the need for traditional signature updates. This advanced AI-driven security extends protection against a wide range of threats, including zero-day exploits and API attacks, all with minimal effort. I find the product’s capability to ensure comprehensive threat coverage with reduced manual intervention to be highly valuable. Additionally, the initial setup process is very easy, which facilitates a smooth adoption and fast deployment.
What do you dislike about the product?
The steep learning curve is largely due to the sheer number of features and the extensive configuration needed before the system feels truly comfortable to use. With so many profiles, protections, exception paths, and tuning options available, it can be difficult to determine exactly what is necessary from the very beginning.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web applications by automatically detecting and blocking threats like SQL injections and API attacks, without needing traditional signature updates.
Strong Protection, Overwhelming Setup
What do you like best about the product?
I appreciate Check Point CloudGuard WAF's ability to provide a balance between strong protection and low maintenance. The product effectively shields our web applications on AWS by allowing straightforward rule setup for API protection, virtual patching, and blocking common web attacks. One of the standout features for me is the ability to apply virtual patches instantly, which is crucial when developers need more time to address vulnerabilities. I also find the auto-updates to threat signatures invaluable for keeping us protected against the latest threats. The learning mode is another advantage, as it quickly propagates policy changes, allowing our security measures to adapt swiftly. Switching to Check Point CloudGuard WAF from AWS WAF has resulted in stronger, more automated protection with enhanced visibility, which aligns perfectly with the time constraints we face. This product delivers a robust solution while minimizing the hands-on management typically required.
What do you dislike about the product?
I find the initial setup of Check Point CloudGuard WAF overwhelming. Upon logging in, the dashboard presents many menus, which can be quite daunting. Implementing a more intuitive feature such as a 'Connect Cloud Environment' could significantly ease this process.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web apps with virtual patching, strong API defense, and automatic threat updates, balancing strong protection with low maintenance. It also automates tasks that were too manual with AWS WAF, enhancing efficiency and visibility.
Quick and Effective Protection, but with Configuration Challenges
What do you like best about the product?
I love that Check Point CloudGuard WAF protects our web applications and cloud APIs against a wide range of threats, which is crucial in today's digital environment. I especially value its ability to prevent bot attacks, ensuring the secure operation of our applications, in addition to effectively protecting us against scammers. I find that the implementation is quick and simplified, which is a great benefit by minimizing the time and effort needed to get the system up and running. I am also impressed with its multi-platform security that provides solid protection, and the high protection rate it offers highlights its effectiveness. Additionally, the initial configuration of Check Point CloudGuard WAF is very simple and suitable for users of different experience levels, which greatly facilitates the integration process.
What do you dislike about the product?
Possible bottleneck in the performance of the computer's processor and poor management of configurations. It overloads the computer's CPU a lot despite the hardware's power.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect web applications and APIs in the cloud from threats, including fraudsters and bots, with quick deployment and multi-platform security.
Effortless Deployment and Robust Threat Prevention with CloudGuard WAF
What do you like best about the product?
CloudGuard WAF’s biggest strengths are strong automated threat prevention, multi-cloud support, and ease of deployment for modern application environments.
What do you dislike about the product?
Trial periods and evaluation phases might be limited, It may longer trials or better QA/testing support before committing. And the rest parts are good.
What problems is the product solving and how is that benefiting you?
Uploaded files can hide malware or malicious payloads; CloudGuard’s “file security” inspects uploads and blocks dangerous content before it reaches your application. And traditional WAFs often require manual tuning of rules and signatures a tedious, error-prone task. CloudGuard’s AI-driven contextual detection and automated policy/rule management reduce manual maintenance and cut down false positives.
AI-driven threat detection has reduced incidents and saved team hours weekly
What is our primary use case?
Check Point CloudGuard WAF's main use case is protecting web application APIs from external threats. It helps us block common attacks like SQL injections, cross-site scripting, and bot traffic, while also ensuring compliance with the security standards.
One unique aspect of our use case for Check Point CloudGuard WAF is how we leverage it to protect customer APIs that are critical to our business. Because we develop and host several in-house applications, we needed a solution that could adapt quickly to new endpoints and traffic patterns. Check Point CloudGuard WAF has been especially helpful here, automatically learning and adjusting protection without requiring constant manual tuning.
What is most valuable?
The best features Check Point CloudGuard WAF offers include AI-driven threat prevention, protection against OWASP Top 10, and zero-day attacks.
The zero-day attack protection in Check Point CloudGuard WAF has been very effective for us. Instead of waiting for signature updates or manual rule changes, the system uses AI to detect abnormal patterns and block suspicious traffic automatically.
Check Point CloudGuard WAF has positively impacted our organization by strengthening application security while reducing the workload in our team. The AI-driven protection against zero-day attacks and OWASP Top 10 vulnerabilities means threats are blocked automatically before patches are applied. This noticeably reduced the number of incidents we needed to investigate, freeing up time for more strategic projects.
Check Point CloudGuard WAF's ability to preemptively block zero-day attacks is one of its strongest advantages. Instead of relying on traditional signature updates, it uses AI and contextual analysis to spot abnormal traffic patterns and block them before they can exploit vulnerabilities. For example, during the Log4Shell disclosure, Check Point CloudGuard WAF was already blocking the suspicious payloads without us needing to manually adjust rules.
The breach reduction feature of Check Point CloudGuard WAF is one of the most impactful aspects of the solution. It proactively blocks suspicious traffic before it can exploit vulnerabilities, which has noticeably reduced the risk of breach in our environment.
What needs improvement?
Check Point CloudGuard WAF's support is only available in English. I gave Check Point CloudGuard WAF a rating of 9 out of 10 because the language limitation of support keeps it from being a perfect score, as I prefer support in different languages.
For how long have I used the solution?
I have been using Check Point CloudGuard WAF for around six years.
What do I think about the stability of the solution?
Check Point CloudGuard WAF is very stable.
What do I think about the scalability of the solution?
Check Point CloudGuard WAF's scalability is very good, and I have no issues with this.
How are customer service and support?
Check Point CloudGuard WAF's customer support is very great and very fast.
I would give Check Point CloudGuard WAF a rating of 10 for customer support.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I previously used Azure WAF, but I decided to switch to Check Point CloudGuard WAF.
How was the initial setup?
The first deployment of Check Point CloudGuard WAF was initially difficult because the documentation is not intuitive, but it is no longer an issue.
What about the implementation team?
I do not utilize Check Point CloudGuard WAF alongside any other Check Point products. I prefer to use a centralized WAF or specialist WAF to assess the efficiency improvements provided by Check Point CloudGuard WAF compared to traditional WAFs.
What was our ROI?
I have saved a significant amount of time and resources since implementing Check Point CloudGuard WAF. Before, our teams often spent several hours manually tuning rules and chasing false positives. The detection has now cut the workload by more than half, freeing up three or four hours less per week.
Check Point CloudGuard WAF has reduced our total cost of ownership by approximately 10%. I consider the time saved as a return on investment since using Check Point CloudGuard WAF.
What's my experience with pricing, setup cost, and licensing?
The pricing, setup cost, and licensing for Check Point CloudGuard WAF are excellent, and I have no concerns with them.
Which other solutions did I evaluate?
I did not evaluate other options before choosing Check Point CloudGuard WAF.
What other advice do I have?
Check Point CloudGuard WAF is an excellent security tool, and my advice to others looking into using it is that it is complete and modern. Check Point CloudGuard WAF is an excellent solution for web applications, and you should consider it for future deployments. I would rate this product 9 out of 10.
Seamless Deployment and Robust Threat Protection with Minimal Maintenance
What do you like best about the product?
The combination of seamless deployment and strong, intelligent threat protection is the greatest upside. The Ease of Implementation was a significant win, allowing us to onboard critical applications with minimal downtime or configuration overhead. The managed intelligence behind the WAF dramatically reduces false positives while effectively stopping complex Layer 7 attacks, freeing up our team to focus on other priorities. Its low maintenance requirement and high-fidelity alerting are also major benefits.
What do you dislike about the product?
While the core WAF functionality is excellent, the reporting and dashboard visualization could be improved for enterprise-level visibility. It sometimes requires extra effort to correlate specific security events across a large fleet of applications outside of the primary console. Furthermore, the initial licensing model required a bit more negotiation to align perfectly with our specific scale-out architecture. However, the strong Customer Support helped us resolve these initial issues quickly.
What problems is the product solving and how is that benefiting you?
The primary problem solved is the comprehensive and proactive defense of critical web applications and APIs against the escalating threat landscape, particularly zero-day attacks and OWASP Top 10 vulnerabilities. This ensures regulatory compliance is consistently met without excessive manual oversight. The benefit is a significant reduction in operational risk and a dramatic increase in security team efficiency, as the intelligent, automated protection means we spend far less time on triage and fine-tuning rules, ultimately accelerating our application deployment timelines.
AI-Driven Security but Costly & Complex Setup
What do you like best about the product?
I appreciate how Check Point CloudGuard WAF effectively protects our cloud-based applications from web attacks, malicious traffic, and zero-day threats. It significantly aids in securing APIs, blocking unauthorized access, and maintaining compliance with security policies. I find it particularly valuable due to its ease of deployment, excellent integration with cloud environments, and robust automated threat prevention. The advanced AI and machine learning capabilities enable it to protect applications without the constant need for manual tuning. Moreover, its dual-layer detection system efficiently identifies both known and zero-day threats. Features like automatic API discovery, strong bot protection, and built-in DDoS mitigation provide a comprehensive solution for modern cloud environments. The system is smart and low-maintenance, automatically learning application behaviors and reducing the need for manual rule tuning while accurately safeguarding API traffic.
What do you dislike about the product?
Some parts of Check Point CloudGuard WAF can feel a bit complex at the beginning, especially the dashboard and policy setup, which may require time to understand. In addition, pricing can be on the higher side compared to other cloud WAF options. While the security is strong, the user experience and guidance could be smoother. The initial setup is not as simple as it appears and needs extra effort for new users who are not familiar with it.
What problems is the product solving and how is that benefiting you?
I use Check Point CloudGuard WAF to protect cloud applications from web attacks and unauthorized access, while ensuring compliance. It automates threat prevention, reduces manual rule-tuning, and efficiently manages security across multi-cloud environments, decreasing operational burden.
Seamless Cloud Integration and Effortless Deployment for DevOps
What do you like best about the product?
I liked that it integrates well with cloud environments and supports laC workflows and this makes the deployment smooth for the Devops team.It is very effective against common web attacks like SQL injection, XSS etc.
What do you dislike about the product?
The User Interface is powerful but it felt slightly overwhelming at first open. Some advanced and powerful options are bit hidden in the menus. Sometimes I felt UI lag issues.
What problems is the product solving and how is that benefiting you?
Cloudguard WAF helped us to tackle two major issues , securing our API's and protecting out web app from modern attacks pattern. During our trial we were able to quickly setup protections against SQL injection and DDOs attack. It gave us better visibility into the suspicious requests and helped us to understand where our product was vulnerable. We used the trial to evaluate whether we could adopt it long term and the experience was vey positive.
AI-Powered Protection That Adapts and Blocks Zero-Day Threats
What do you like best about the product?
What I like best is that it uses AI and machine learning, blocking zero-day web attacks, bypassing the need for signatures. It can also distinguish humans from bots using behavioral analysis like mouse movements and keystrokes. The upsides of using the tool basically is that its ML engine adapts to changing traffic patterns automatically and it inspects uploaded files for malicious content. and its frequency of use is high because teams monitor it daily.
What do you dislike about the product?
Well, there is a few things I don't like the cost is higher than more basic WAFs, especially for smaller apps. On the downside if by any chance you have unusual or custom web apps, the contextual ML might misclassify traffic until properly “trained". Their customer support is not that good.
What problems is the product solving and how is that benefiting you?
For my work maintaining order flow is key, forestalling lost earnings and safeguarding customer satisfaction. it helps me to keep safe business information and sensitive data. Since my line of work greatly depend on uptime, logistics, consumer trust and supply chain reliability. the main problem it helps me solve is that it keeps our digital operations secure, stable, readily available - directly shielding both income and brand's standing.
My review for Check Point CloudGuard WAF
What do you like best about the product?
As user the most definitely excited by the system's AI, is the robust threat defense, which presents impressively accurate in blocking those intrusions, almost no false positives.
Its function demonstrates how easily it’s launched and managed, mainly because of its automated system.
It includes strong web application and API protection, with fewer misleading alerts, easy setup in cloud, an adjustment is very easy too.
What do you dislike about the product?
I dislike that it can be expensive compared to other WAF solutions, and the initial learning curve can be challenging for new users. Some of the documentation could be more detailed, especially for advanced configurations. Additionally, while customer support is generally responsive, it can sometimes take longer than expected to resolve complex issues.
What problems is the product solving and how is that benefiting you?
In one of the cases that i have in the company using Check point cloudGuard WAF, we were experiencing repeated bot attacks and unauthorized API calls that were impacting the performance of a customer-facing application. Some API endpoints were undocumented and being targeted, causing slowdowns and increasing operational risk. After deploying CloudGuard WAF, it automatically discovered these API routes, blocked malicious requests, and filtered out harmful bot traffic.
