We use the solution for VPN with multifactor authentication, IPS protection, and threat emulation. We have deployed the product in the cloud data center.
Check Point Security Management (BYOL)
Check Point Software TechnologiesExternal reviews
323 reviews
from
and
External reviews are not included in the AWS star rating for the product.
A checkpoint cloud guard network security assessment for strengthening cloud enviroment
What do you like best about the product?
Checkpoint cloud gurd network security all encompassing approach to safeguarding cloud settings is one of the most noatable characteristics.
It is easy to use. It have good customer support and easy to implement.
It is easy to use. It have good customer support and easy to implement.
What do you dislike about the product?
No there is nothing to dislike about checkpoint cloud gurd network security
What problems is the product solving and how is that benefiting you?
Check point cloud gurd network security offers signoficant advantage to enterprises by adressing multiple important cloud security concerns
1.Securing Cloud Workloads
2.Visibility and Control
3.Compliance Management
1.Securing Cloud Workloads
2.Visibility and Control
3.Compliance Management
Comprehensive Security for Modern Business: Check Point CloudGuard
What do you like best about the product?
Check Point CloudGuard Network Security has a comprehensivesecurity features, a good Cloud native architecture, having threat prevention capabilities and a nice centralise management console, Good customer support, easy to implement, easy intergartions with other oems
What do you dislike about the product?
Costing is on a higer side, complexity of the product, having limited free tier for CloudGuard, Vendor locking policy
What problems is the product solving and how is that benefiting you?
Checpoint CloudGuard Netowrk secures cloud workload, it prevents from breaches and data loss, prevents from zero day attacks etc.
Provides multifactor authentication, IPS protection, and threat emulation
What is our primary use case?
What is most valuable?
It's very easy for management to understand workflow and everything.
What needs improvement?
Check Point Tech Support will not assist with new configurations if we encounter any issues during the configuration process. They only provide support if there are issues with existing configurations.
For how long have I used the solution?
I have been using Check Point Security Management for four years.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
It is 100% scalable. Behind the firewalls, around 25 web applications are accessed daily. Each application can be accessed by up to one lakh people every day.
How are customer service and support?
Support is good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Previously, I worked with FortiGate, and integrating that product with cloud platforms was very difficult. The workflows were overly complex, and the documentation was inadequate.
Check Point is superior to other security vendors. Their signature database, which includes antivirus, IPS, and anti-malware, is highly advanced. The system is easy to understand, and deployment via the web interface is also straightforward.
For example, during the COVID-19 pandemic, a new vulnerability known as Log4j emerged. While many vendors were unaware of this vulnerability, Check Point promptly emailed all its customers to inform them. They reassured customers that their gateways already had predefined prevention signatures to protect against this threat, requiring no additional action.
How was the initial setup?
The initial setup is straightforward. Fresh deployment and creating the gateways will take approximately three to four hours.
With Fortinet, managing the product through cloud formation can be difficult to implement in a cloud environment because it's not straightforward. First, we need to spin up some VMs and configure everything manually. In contrast, Check Point provides a more seamless cloud formation process. With Check Point, you click on the cloud formation option, and the VMs and necessary configurations are automatically set up. You will get GUI access quickly.
Only two resources are required. One knows Check Point, and another guy knows the cloud platform where they want to deploy the gateway.
What other advice do I have?
The integration process is straightforward. If you have some knowledge of your cloud service provider, you can easily integrate with it.
It has improved over the past four years. Previously, pushing any policy from the management server to the security gateway could take around ten to fifteen minutes. However, this task is now completed in about one minute with the new firmware version. This improvement demonstrates the substantial advancements made in the Management of Check Point products. It continuously updates its products to align with security standards and market awareness. They implement these updates in their own unique way. It is a strong player in the security market and has a long-standing presence. Their solutions are reliable and trusted for real security needs.
Maintenance is very easy.
First, we will thoroughly understand their requirements. Once we understand clearly, we will design tailored solutions for them. Next, we will present these solutions to the customer for review and discussion. Following their approval, we will run POC, collect evidence as required, and submit the comprehensive report.
Overall, I rate the solution a ten out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
10 out of 10 for Network Security
What do you like best about the product?
Working in Cloud security operations, I must say that this platform or tool is evidently effective for protecting cloud network infrastructures. When it comes to the features of this tool, I would say that for our client project security purposes, we used features such as: 1. Gateways Security 2. Unified Security for hybrid clouds 3. Prevention from all kinds of cyber attacks on cloud network systems.
What do you dislike about the product?
There is no experience as negative as the one with the Check Point CloudGuard network security tool.
What problems is the product solving and how is that benefiting you?
Zero trust networking. Support from team.
Excellent for Network Security Protections
What do you like best about the product?
Check Point CloudGuard Network Security is very much advance as per my personal experience for protecting risk and threats for any cloud networks that cloud be let any like hybrid or say public or private cloud or virtual networks.
Helps in automations of Cloud pipelines work infra.
Helps in automations of Cloud pipelines work infra.
What do you dislike about the product?
Cloud be nothing as per my experience. N numbers of security and threat prevention features.
What problems is the product solving and how is that benefiting you?
Almost acting like a firewall software for our cloud network security.
Always recommended for DevOps.
Always recommended for DevOps.
Access to detailed network logs in real time helps us decide and take prompt action to block and fix threats
What is our primary use case?
We use the product as a perimeter and core firewall for multiple clients at different locations.
We have physical Smart-1 appliances and virtual appliances in our environment. We merged all of the old managers into these managers and managed to centralize the management of firewalls and see the logs altogether.
We are using management API for large configs, and clear rules, blocking malicious IP addresses with SAM rules, and migrating the VLANs with it.
We have deployed Check Point high-end firewall UTMs to medium business-grade devices with different models. We also have a cloud-based Check Point firewall for one of our clients. It's easy to manage either centrally or as separate devices. We use them for network security including firewall rules, NATTing, Web application access, IPSec VPN tunneling between offices and cloud services, user VPN clients for access from home, data encryption, anti-malware/anti-virus solutions, and as network gateway devices for routing and DNS.
How has it helped my organization?
Check Point's management portal and firmware are very stable and don't require frequent maintenance. Their IPSec tunneling is very stable, especially with Azure and AWS networks.
Access to detailed network logs in real time helps us decide and take prompt action to block and fix threats.
Centralized management is great. With this, we manage all of Check Point products from one central management, we can apply rules, and NATS and manage app and URL Policies, threat prevention, and IPS protection rules.
Secondly, centralized log and report management is important. We can distribute logs to our log appliances with centralized management and view logs without logging additional devices.
HA Structure provides good coverage and works fine. With the HA structure, we can manage two data centers as one, and this is helping much.
We can keep old revisions, and with that, we can check or revert to one when needed.
What is most valuable?
The most valuable aspects of the solution include:
- IPSec VPN Tunneling,
- DDoS Protection,
- HÀ and Clustering,
- Firewall Rules,
- Proxy support,
- Revision history
- Detailed audit log,
- Smart Event
- Filter syntax.
These features are easy to configure and offer multiple options to set them up with cloud services and other vendor firewall products.
We can always feel secure if some things go wrong, I'm sure that we can restore to the old one.
We can apply centralized proxy settings to get additional databases when we need them.
We can get a graphical view of the traffic and provide history when we need it.
What needs improvement?
We didn't find any major feature missing or lacking in Check Point products that we used. We'd just like them to continue to improve their products with new features and updates.
However, license update and upgrade processes can be made a little easier.
Also, I'd like to see more integration possibilities between Check Point and other vendor security solutions.
The Check Point SandBlast platform could also be merged with the Check Point GAIA platform for a central management console and easier controls.
For how long have I used the solution?
I have been using Check Point for more than 10 years for different clients.
What do I think about the scalability of the solution?
The solution is highly scalable.
How are customer service and support?
Check Point's knowledge base is very vast and provides lots of information if we need some help. The community is very helpful as well.
Which solution did I use previously and why did I switch?
We have multiple clients and use different technologies, so we work on other vendor products also.
How was the initial setup?
We have a professional service team that we work together for setup-related work to Check Point appliances.
What about the implementation team?
We handle the initial setup in-house.
Which other solutions did I evaluate?
We have multiple clients and use different technologies, so we work on other vendor products also like Cisco ASA, FTD, Palo Alto, FortiGate etc.
What other advice do I have?
Overall I am fully satisfied with Check Point
"best network threat analyser for cloud"
What do you like best about the product?
It will monitor all our network and user level traffies and event. it provide a various feature such as content filtering and web application etc.one of the most excellent feature is it will provide a the real time monitoring.another one is easy to implementation in any environment without any issues.
What do you dislike about the product?
the main one is cost of the license and its maintance could be drawback for smaller environment and the limitation of the network security is supported only in VPC.
What problems is the product solving and how is that benefiting you?
it will help to reduce the malicious attack on our cloud,another one is it will monitor the all our network and user.
Thank you Check Point for inviting me to provide my insights as Security Analyst.
What do you like best about the product?
As Cloud infrastructure security analyst, we have been encountering to multiple network security compliances related issues. So thank you to Check Point CloudGuard to come with excellent and exceptional Cloud security tools. As far as my short experience using this Check Point CloudGuard Network Security tool has been amazing. Following few positive impact or features or things that benifited us:
1. It's seamless integration capabilities with our existing cloud infrastructure.
2. It's ability and capabilities on indentify and threat analysis of networks.
Monitoring and preventing vulnerability threats risk for networks.
Etc.
1. It's seamless integration capabilities with our existing cloud infrastructure.
2. It's ability and capabilities on indentify and threat analysis of networks.
Monitoring and preventing vulnerability threats risk for networks.
Etc.
What do you dislike about the product?
Hard to list any or think of any dislikes or downside. Always recommended for cloud infrastructure security.
What problems is the product solving and how is that benefiting you?
NSPM, Cloud networks protections
Acting as firewall.
Acting as firewall.
Guide to network log monitoring
What do you like best about the product?
I like the active threat monitoring engine to detect malicious traffics in our application. We can use the graph UI to view the logs on radar visibility and the intelligence engine will support custom ruleset to identify and detect organization usecases itself.
What do you dislike about the product?
The module will supports only on network and account activity logs.
What problems is the product solving and how is that benefiting you?
It will help us to reduce anomaly traffics on our application.
Network security Work very efficiently
What do you like best about the product?
First advantage has to be that it supports multiple cloud vendors meaning that we can monitor multiple cloud accounts with one subscription.
IT provides a clean view of the network traffic
It is very capable of isolating the malicious traffic from the regular traffic
It monitors all the traffic to and from the containers including on Prem to cloud environment and vice versa also the connection between the containers
The UI is very clean and easy to understand
Implementation is quite fast
IT provides a clean view of the network traffic
It is very capable of isolating the malicious traffic from the regular traffic
It monitors all the traffic to and from the containers including on Prem to cloud environment and vice versa also the connection between the containers
The UI is very clean and easy to understand
Implementation is quite fast
What do you dislike about the product?
There are not many downsides to the network security module but the logs supported are limited they only support cloud trial logs and vpc logs
We cannot get end to end traffic view which if present can be more helpful at times
We cannot get end to end traffic view which if present can be more helpful at times
What problems is the product solving and how is that benefiting you?
As said earlier the biggest problem we had with other solutions is that they only support native services where as cloud gaurd supports almost all the cloud service providers
showing 41 - 50