an amazing network security tool for cross platform environments
What do you like best about the product?
first and most impoertant advantage of cloud gaurd network security is that it is a cross platform tool and can greatly help us to keep a track of the security standards by filtering the malicious traffic
it comes with a very clean and neat user Interface.
the threat engine works so good.
it comes with sufficient built in filters to search for specific kind of traffic
traffic explorer helps in easier understanding of the network .
custom notification can be set
easy to integrate
easy to implement
What do you dislike about the product?
one can only get cloud trail and VPC logs.
using terraform to manage security policies can be tricky at times and might need to be reviewed to ensure objecte are created as per the expectation, these are not logged to ensure terraform state and the checkpoint databases are in sync with eachother.
What problems is the product solving and how is that benefiting you?
unlike native services specific to provider cloudgaurd provides cross platform support meaning that i can still get overall security of the cloud environments across the various proiders from a single dashboard and CloudGuard Network Security provides inspection throughout many parts of the cloud network.
Inspection of traffic from the internet to a VPC and from VPC to the internet .
inspects the traffic between VPCs
Inspeciton between VPCs and on-prem
IPS fuctionalities
Detailed traffic logging
identity based access
Advanced Intelligence Module for Cloud
What do you like best about the product?
It provides more features to secure and monitor our application networks, like VPV logs monitoring, User Account Activity monitoring, Pod to Pod communication on kubernetes clusters,etc. I like the feature of Graphical presentation of Captured logs.
What do you dislike about the product?
This features only supported on VPC & Account Activity logs.
The Graphical presentation will be supported on limited number of traffics only.
What problems is the product solving and how is that benefiting you?
The network security solution help us to continuously monitor our application networks and prevent any anomaly behaviour happens on our networks.
Thread Intelligence for Cloud Network logs
What do you like best about the product?
It having the anomaly Threat Intelligence Engine to detect our network inbound and outbound traffics effectively.
The engine having some predefined rulesets to address the runtime protection of our cloud environments.
It has supported the cluster pod to pod network communication as well.
What do you dislike about the product?
The module will be supported on Network VPC and user activity logs.
The engine will not supported to run the specific rulesets to assess.
What problems is the product solving and how is that benefiting you?
With the help of CloudGuard Network Security we continuously monitoring network and user activity logs on our cloud environments.
We have configured custom usecases to find malicious activity.
Amazing Threat Intel module for Cloud Application logs
What do you like best about the product?
The network module covers completely on console user activity logs and Vpc network logs. The additional features of gsl query will help us to easily identify and we can able to find the customized details of events.
What do you dislike about the product?
It will supports only on activity and vpc logs.
Log retention period is very low
What problems is the product solving and how is that benefiting you?
From the help of this module we reducing the malicious traffics from attackers. We can able to monitor the live traffics on continuously
probably one of the best cloud network security tool.
What do you like best about the product?
These are the points that i find best from my daily use of cloud gaurd
The User Interface is clean and easy to understand
the threat engine works so good
it has built in predefined log query (filters) that can save lot of manual work
traffic explorer is really helpful interms providing a breife understanding of the network traffic
ability to set up custom notifications is very useful
It supports custom rules
easy to integrate
easy to implement
great customer support
What do you dislike about the product?
the logs are limited to cloud trial and VPC logs
although traffic graph is great it is limited we cannot get end to end traffic view.
What problems is the product solving and how is that benefiting you?
since we have multiple cloud service providers and 7 different accounts for various applications, it is challenging to keep track of the security compliance of the cloud environment and any security breach starts at network level and is by far the most important part and cloud gaurd greatly helps us to keep track of the security standards.
Robust features in a cloud native world
What do you like best about the product?
Using CloudGuard network security allows for a familiar implementation with all the features of an onprem appliance. The deployment can be completely codified using Terrafrom, allowing for reapeatable deployments for each region. Using the AWS GWLB and endpoint service, inspecition can be extended to any / all member accounts for ingress / egress inspection. The GWLB deployment also allows for right sizing of EC2s that can increase/decrease with autoscaling. The policy can also be codified using Terraform, allowing for teams to inner-source access requests, but ensuring the proper security teams can still approve the access before it is rolled out.
What do you dislike about the product?
When using Terraform to manage the security policy, the object creation layout needs to be well thought through to ensure objects are created as disired. Also, publishing changes needs to be accounted for on Terraform apply success and failures so Terraform state and the Check Point database stay in sync.
What problems is the product solving and how is that benefiting you?
CloudGuard Network Security provides inspection throughout many parts of the cloud network.
1. Inspection of traffic from the internet inbound to a VPC.
2. Inspection of traffic from a VPC to the internet. Internet categories and applications can be used instead of having to know each exact FQDN, which would be a major pain and struggle for engineering teams.
3. Inspection between VPCs
4. Inspeciton between VPCs and on-prem
5. IPS
6. Detailed traffic logging
7. Identity based access
Since this deployment is EC2 based, traffic mirroing is also possible to enable external IDS systems.
Cloud Guard Network Security - Best Network Threat Analyser for Cloud
What do you like best about the product?
It will help us to reduce malicious attack traffic s on our cloud applications. It will monitor all our network and user level traffics and events.
I like the option of GSL module to provide us on filter the traffic events more deeply.
What do you dislike about the product?
Currently it will supports network and user activity to integrate.
What problems is the product solving and how is that benefiting you?
We reducing the risk of malicious traffics and it will help us to monitor our application traffics on 24/7
Offers straightforward licensing and excellent technical support
What is our primary use case?
My main use cases for CloudGuard Network Security are to scale the technology for protecting and filtering traffic within AWS and Azure environments.
The main challenge I was looking to address by implementing CloudGuard Network Security was the need to establish a firewall on our cloud perimeter for enhanced security.
How has it helped my organization?
The flexibility to rebuild the firewall in CloudGuard Network Security has helped our organization eliminate downtime.
CloudGuard Network Security has improved our organization by allowing us to easily deploy firewalls from the cloud wherever we might need them.
What is most valuable?
The most valuable feature I have found in CloudGuard Network Security is the flexibility to rebuild the firewall as needed.
What needs improvement?
CloudGuard Network Security could be improved in the area of upgrading in place.
For how long have I used the solution?
I have been working with CloudGuard Network Security for five years.
What do I think about the scalability of the solution?
The scalability of CloudGuard Network Security is very good and we can scale it as needed.
How are customer service and support?
Check Point's service and tech support are very good, especially since we have access to their Diamond-level support. I would rate the support as a ten out of ten.
How would you rate customer service and support?
What's my experience with pricing, setup cost, and licensing?
I find the pricing and licensing of CloudGuard Network Security to be pretty straightforward.
What other advice do I have?
The main benefit we have seen from using CloudGuard Network Security is the ability to filter traffic by URL. We realized these benefits approximately six months after deployment.
Unified management of the firewall has positively affected our security operations by making it easy to manage from one place.
My advice for those evaluating CloudGuard Network Security is to remember that licensing is critical, so ensure that central licensing is configured properly.
Overall, I would rate CloudGuard Network Security as a ten out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Gives a lot of visibility and we can manage all cloud environments from a central place
What is our primary use case?
We are primarily using it for access control for our various cloud environments from our on-prem resources.
By implementing CloudGuard Network Security, we wanted granularity and control of the traffic going through our different BDCs within AWS. We use one there. We also wanted identity awareness for going into cloud resources.
How has it helped my organization?
CloudGuard Network Security gives us access and visibility into what is going on in our cloud environments. Previously, we did not have any cloud instances. We were just managing the on-prem and then letting it go. It gives a lot of visibility. We could realize its benefits instantly.
CloudGuard Network Security provides us with unified security management across hybrid-clouds as well as on-prem. We were able to manage all of our cloud environments from one central place. We have got CloudGuard in Azure and AWS restricting traffic between those hybrid cloud environments.
We feel very confident in our cloud network security by using CloudGuard Network Security. We get what we would expect with an on-prem firewall. We get all of the functionality and security that we would expect from an on-prem firewall in the cloud. We did not go with our cloud vendor's cloud firewall because they were not able to meet a lot of the security standards that we needed.
What is most valuable?
The ease of deployment has been nice. It is like managing any of our on-prem firewalls.
What needs improvement?
The only pain points we have had with it were when we did major version upgrades. Rather than being able to do incremental upgrades on those, we had to completely redeploy. I know that has changed recently, but we had some hiccups when we did the upgrades. This is the only issue we have had.
For how long have I used the solution?
We have been using CloudGuard Network Security for over four years.
What do I think about the stability of the solution?
It is very stable. I would rate it a ten out of ten for stability.
What do I think about the scalability of the solution?
It scales pretty easily. At this time, I am not aware of any plans to increase its usage.
How are customer service and support?
Their support is great. I would rate them a ten out of ten.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We did not use a similar solution previously.
How was the initial setup?
It is a private cloud. We have it in both our private Azure and private AWS restricting access between the individual BDCs and on-prem environment and between the two different cloud environments as well.
It is primarily deployed by one team, but multiple clients use the cloud services.
What was our ROI?
I believe we have seen an ROI. We are able to manage it from an already existing management server that we are using for on-prem. Not having to have another product that we are managing outside of Check Point is a big plus.
Which other solutions did I evaluate?
We looked at cloud-native firewalls. They were not able to meet the security standards that we were able to get by using CloudGuard.
We looked at their IPS solutions with the cloud-native firewalls, but we could not go as granular. With CloudGuard Network Security, we could see the individual protection and fine-tune it.
CloudGuard Network Security is also easier to use than other solutions.
What other advice do I have?
I would rate CloudGuard Network Security a ten out of ten.
Which deployment model are you using for this solution?
Private Cloud
Offers seamless deployment, rapid scalability, and user-friendly management, providing robust protection against threats with ease
What is our primary use case?
We utilize CloudGuard Network Security as virtual appliances deployed within virtual machines, acting as firewalls at the perimeter of our data center in QSaver. These virtual appliances safeguard all internet access originating from the virtual machines at our factory in Curitiba, Brazil.
How has it helped my organization?
The challenges we sought to tackle through the implementation of CloudGuard Network Security were to ensure the protection of our servers against threats and attempts to breach them via internet-facing avenues.
We found it advantageous due to its ease of implementation and use. There were no delays in receiving customer devices, which enhances security within the environment.
We enjoy all the benefits typically associated with physical appliances, even while utilizing virtual machines. Although it took some time for customers to fully grasp the benefits, as they weren't immediately clear, over time, they began to recognize the value it brings to their security infrastructure.
It offers us unified security management across hybrid CloudGuard deployments, as well as on-premises. The option to manage it bridges physical devices onto the data center. With consolidated logs accessible on the same management interface, it becomes highly convenient and straightforward to operate.
Comparing CloudGuard's network security to other solutions in terms of ease of use is challenging. Additionally, since we're already utilizing Check Point solutions, integrating it with hardware network security proves to be very straightforward and user-friendly.
We have a high level of confidence in the effectiveness of CloudGuard Network Security.
What is most valuable?
The SSL spectrum proved to be the most valuable for our incoming connections. This feature enabled us, for instance, to successfully prevent Log4J attack attempts.
What needs improvement?
New features have been introduced recently, but they have not yet been integrated into CloudGuard Vsec. It would be advantageous to have them implemented as they would improve the performance.
For how long have I used the solution?
I have been using it for three years.
What do I think about the stability of the solution?
It provides excellent stability capabilities.
What do I think about the scalability of the solution?
It offers good scalability abilities. We have a plan to increase the utilization of CloudGuard Network Security and its services in the future.
How are customer service and support?
I am satisfied with the customer service and support provided. I would rate it eight out of ten.
How would you rate customer service and support?
What about the implementation team?
In our deployment environment, each instance is strategically positioned at the forefront of the web servers within the data center, effectively serving its purpose. Specifically, it functions to regulate internet access for the servers and manage inbound connections from internet customers to the servers.
It's remarkably easy to deploy, by far the simplest. For instance, it only took us a few minutes to transition to production. This capability is incredibly beneficial, as it allows us to swiftly assist customers during emergencies by deploying a firewall and addressing any threats they may encounter.
What was our ROI?
Determining the return on investment can be challenging; however, we've observed other companies operating in the same sector with similar approaches. Despite encountering attacks, we have yet to experience any incidents. This absence of incidents serves as a metric for us, indicating the reliability of our alternative solution.
What's my experience with pricing, setup cost, and licensing?
The pricing is highly competitive and advantageous, offering great value.
What other advice do I have?
I recommend others to give it a try because of its simplicity in deployment, scalability, and usability. Overall, I would rate it ten out of ten.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
