Check Point WAF (formerly CloudGuard WAF)

What do you like best about the product?

I use Check Point WAF to protect web applications and APIs from a wide range of cyber threats like SQL injection and cross-site scripting (XSS). What I like most about Check Point WAF is its ability to provide strong, automated protection for web applications while remaining easy to manage on a day-to-day basis. The platform effectively detects and blocks traffic. The initial setup of Check Point WAF was relatively straightforward, especially with the available documentation and guided configuration options. It provides strong protection against modern web application threats and offers good visibility through a centralized management interface.

What do you dislike about the product?

One challenge is the initial onboarding and policy tuning process. For organizations with complex or highly customized web applications, achieving the right balance between strong protection and minimizing false positives can require additional time and expertise.

What problems is the product solving and how is that benefiting you?

I use Check Point WAF to protect web applications and APIs from cyber threats like SQL injection and XSS. It offers strong, automated protection while being easy to manage daily. It effectively detects and blocks traffic, solving security challenges by defending against common and complex attacks.

I typically use Check Point WAF (formerly CloudGuard WAF) for protecting cloud workspaces, which includes cloud applications and websites hosted on cloud platforms, especially Amazon or Azure. My customers are using Check Point WAF (formerly CloudGuard WAF) as a standalone product in the cloud, not in conjunction with any other Check Point products.

Check Point WAF (formerly CloudGuard WAF) is especially valuable because of its cloud-native architecture and AI autonomous protection capabilities. It does not require extensive administrative skills or experience to operate. Within minutes of redirection, the platform can be up and running, which is one of the key benefits of Check Point WAF (formerly CloudGuard WAF).

Traditional WAF solutions require rule tuning with manual updates, but Check Point WAF (formerly CloudGuard WAF) includes a self-learning tool that suggests changes automatically. This significantly reduces the need for manual interruption and administrative effort.

Stability is one of the unique features of Check Point WAF (formerly CloudGuard WAF). I do not have any concerns regarding hardware or security stability, with a reliability rating of 99.9%.

Check Point WAF (formerly CloudGuard WAF) needs to offer more competitive pricing. There are many other cloud WAF products available, and when comparing costs, other vendors have a significant cost advantage.

Check Point WAF (formerly CloudGuard WAF) pricing is not as competitive as other original equipment manufacturers like Cloudflare or Array WAF. I feel the pricing is on the higher side compared to these alternatives.

Application Delivery Controller (ADC) features are limited in Check Point WAF (formerly CloudGuard WAF). While we can integrate with ADC, not all inputs from the forest can be uploaded to Check Point WAF (formerly CloudGuard WAF), which is a practical issue we have encountered in customer use cases.

I have been using this solution for approximately one and a half years.

Stability is one of the unique features of Check Point WAF (formerly CloudGuard WAF). I do not have any concerns regarding hardware or security stability.

On a cloud platform, I do not foresee any scalability limitations. Check Point WAF (formerly CloudGuard WAF) has explicitly expandable features, so I do not forecast any constraints.

I am satisfied with Check Point WAF (formerly CloudGuard WAF) customer support. They have a dedicated Tactics and Operations Center (TAC) team with service level agreements in place. We typically receive business hours or 24/7 support depending on our license level.

I have not deployed Check Point WAF (formerly CloudGuard WAF) on-premises because their capital expenditure cost is significantly higher than other brands. I have not had the opportunity to deploy an on-premises solution from Check Point.

The biggest advantage of Check Point WAF (formerly CloudGuard WAF) is that it is a cloud-native platform. Check Point WAF (formerly CloudGuard WAF) is competitive with other original equipment manufacturers. I am not mentioning low-range products, but when compared with offerings from Cloudflare or Array WAF, I feel Check Point WAF (formerly CloudGuard WAF) pricing is on the higher side.

Application Delivery Controller (ADC) features are limited in Check Point WAF (formerly CloudGuard WAF). We can integrate with ADC, but not all inputs from the forest can be uploaded to Check Point WAF (formerly CloudGuard WAF). This is a practical issue we have encountered in customer use cases.

From my experience and client experience, Check Point WAF (formerly CloudGuard WAF) is a good product for cost of ownership and return on investment.

Check Point WAF (formerly CloudGuard WAF) offers a subscription-based, pay-as-you-use model with monthly or yearly subscription options. This subscription model helps customers manage their costs as an operational expenditure rather than a capital expenditure.

All original equipment manufacturers mention zero-day attacks and the exploitation of previously unknown vulnerabilities, and Check Point WAF (formerly CloudGuard WAF) also includes this feature. As a tool, it is good, but I did not observe any extraordinary service from Check Point WAF (formerly CloudGuard WAF) regarding zero-day attack protection. It is a good feature, but I did not find particularly unique characteristics.

Application Delivery Controller (ADC) features are limited in Check Point WAF (formerly CloudGuard WAF). We can integrate with ADC, but not all inputs from the forest can be uploaded to Check Point WAF (formerly CloudGuard WAF). This is a practical issue we have encountered in customer use cases.

Check Point WAF (formerly CloudGuard WAF) does have higher ratings in some areas.

Check Point WAF (formerly CloudGuard WAF) is a good product for total cost of ownership and return on investment. From my experience and client experience, Check Point WAF (formerly CloudGuard WAF) offers a subscription-based, pay-as-you-use model with monthly or yearly subscription options. This subscription model helps customers manage their costs as an operational expenditure rather than a capital expenditure. I would rate this product overall as a nine out of ten.

Public Cloud

Amazon Web Services (AWS)

What do you like best about the product?

I like the most that since beginning of set up the rate of False Positives is significantly lower then in other tools. Also 0 day protection is working well and does not require manual rules updates.

What do you dislike about the product?

There is not enough of technical documentation and also initial set up is complicated. Will be easier if will be more knowledge-base articles available.

What problems is the product solving and how is that benefiting you?

It protect assets in hybrid, cloud and on-premises environments. Allows for Iac for better configuration so it allows to save some time of cloud security engineers.

What do you like best about the product?

The user interface is really good, also a good integration and performance on my device. Pricing is okay in the actual market. Always when I had a problem the support team has been helpful. AI integration could be better

What do you dislike about the product?

I will say that the AI integration on Check Point WAF could be better and use more of the Agentic AI but overall the rest is okay so far as I had a great experience overall

What problems is the product solving and how is that benefiting you?

Actually Check Point WAF is solving multiple problems at my company that we had and no other tool was capable of resolving but this one has been able to.

What do you like best about the product?

It’s a solid combination of strong security and easy management. I also appreciate its cloud-native approach, especially the ability to protect applications across different cloud environments.

What do you dislike about the product?

Compared with some competing WAF solutions, the initial setup and policy-tuning process can feel complicated, particularly for teams that are new to web application security. I’ve also seen users note that troubleshooting false positives may take a significant amount of manual effort, and that the user interface can come across as less intuitive than some cloud-native alternatives.

What problems is the product solving and how is that benefiting you?

It protects web applications and APIs from cyber threats that traditional network firewalls can’t effectively stop. It also helps mitigate attacks such as SQL injection, cross-site scripting (XSS), remote code execution, bot attacks, API abuse, and denial-of-service attempts.

What do you like best about the product?

I really like the AI engine in Check Point WAF; it's cool how it automatically handles threats, saving us a lot of time by reducing the false positive rate. This automation allows us to block threats efficiently without impacting the user experience, which is great because the team doesn't waste hours chasing down false alarms.

What do you dislike about the product?

It has a pretty steep learning curve, and the initial config is pretty tough as well, and also the price can sting quite a bit. The documentation needs some work.

What problems is the product solving and how is that benefiting you?

I use Check Point WAF to protect web apps and APIs automatically, reducing manual rule tuning and false positives. The AI engine saves us time by handling threats and automating blocking without impacting user experience.

What do you like best about the product?

I believe the best advantage of the Check Point WAF solution is that it offers a strong protection against common web attacks (OWASP Top 10, bots, API threats), which are the most common threats I met.

What do you dislike about the product?

There are no many things to say here, but let’s say that the complex initial setup can be challenging, especially for teams without prior Check Point experience. However, there are a lot of tutorials that will help with this, so I wouldn’t say that it is really a thing I don’t like, just that it’s challenging.

What problems is the product solving and how is that benefiting you?

In my team case, Check Point WAF protects our web applications and APIs from common cyber threats while providing centralized visibility and control. This reduces security risks, improves compliance, and saves time on manual security management.

What do you like best about the product?

It's ease of use and accessibility for new users. Genuinely helpful products with affordable price. Makes sense for enthusiasts and companies. Not much else to say.

What do you dislike about the product?

Nothing in particular, I would continue to use the service if I was doing anything at the moment that required it. It's a good product, nothing comes to mind as a dislike

What problems is the product solving and how is that benefiting you?

It was handling security of my endpoints that i created personally as enthusiast. Benefits me by keeping me assured that my data is safe from attacks.

What do you like best about the product?

I like the strong protection Check Point WAF offers against web application attacks. Its easy-to-manage interface is a big plus for me, as is the real-time threat detection that it provides. I also appreciate the detailed visibility into web traffic and security events, which makes it easier to monitor and respond to potential threats. The documentation was helpful during the initial setup, allowing for a straightforward configuration. Additionally, it integrates well with other security tools, which enhances its effectiveness in our security infrastructure.

What do you dislike about the product?

One area that could be improved is reducing false positives and making policy tuning more straightforward. The reporting and dashboard customization options could also be more flexible and user-friendly.

What problems is the product solving and how is that benefiting you?

Check Point WAF protects web applications from cyberattacks, detects malicious traffic, reduces security risks, and improves application security without affecting user experience.