My main use cases for CloudGuard Network Security are to scale the technology for protecting and filtering traffic within AWS and Azure environments.

The main challenge I was looking to address by implementing CloudGuard Network Security was the need to establish a firewall on our cloud perimeter for enhanced security.

The flexibility to rebuild the firewall in CloudGuard Network Security has helped our organization eliminate downtime.

CloudGuard Network Security has improved our organization by allowing us to easily deploy firewalls from the cloud wherever we might need them.

The most valuable feature I have found in CloudGuard Network Security is the flexibility to rebuild the firewall as needed.

CloudGuard Network Security could be improved in the area of upgrading in place.

I have been working with CloudGuard Network Security for five years.

The scalability of CloudGuard Network Security is very good and we can scale it as needed.

Check Point's service and tech support are very good, especially since we have access to their Diamond-level support. I would rate the support as a ten out of ten.

Positive

I find the pricing and licensing of CloudGuard Network Security to be pretty straightforward.

The main benefit we have seen from using CloudGuard Network Security is the ability to filter traffic by URL. We realized these benefits approximately six months after deployment.

Unified management of the firewall has positively affected our security operations by making it easy to manage from one place.

My advice for those evaluating CloudGuard Network Security is to remember that licensing is critical, so ensure that central licensing is configured properly.

Overall, I would rate CloudGuard Network Security as a ten out of ten.

We primarily use CloudGuard Network Security to deploy cloud firewalls in Azure, safeguarding our applications, and managing them using Terraform.

CloudGuard Network Security streamlines processes by automating tasks, reducing human effort, and enhancing security for cloud deployments.

The most valuable features are the ease of administration with the cloud management extension and the cloud licensing model.

I have been using CloudGuard Network Security for about four months.

We haven't had any stability issues so far.

Scalability has been great. We utilize scale sets, deploying two gateways per region with settings ranging from two to ten.

The initial deployment using the ARM template in Azure was straightforward, but migrating to Terraform added complexity, although we managed to make it work.

Our existing Check Point discounts make the licensing competitive and budget-friendly.

CloudGuard provides unified security management across hybrid clouds and on-premises environments.

Unified security management simplifies our operations by centralizing logging and integrating seamlessly with our existing solutions, ensuring security teams have a single point of reference without needing additional configurations.

My advice would be to consider the solution as it performs well and seamlessly integrates with existing systems, streamlining processes and proving to be highly beneficial.

Overall, I would rate CloudGuard Network Securit as an eight out of ten.

Many traditional on-premise customers transitioning to the cloud often prioritize solutions like CloudGuard, especially when dealing with scale sets and clusters. These customers are accustomed to constructing their own network infrastructure and are drawn to CloudGuard for its compatibility with these setups. This primary use case highlights the appeal of CloudGuard for organizations seeking to maintain control over their network security while migrating to cloud environments.

The unified security management significantly impacts security operations and management positively. It's undeniably beneficial, offering streamlined processes and enhanced control. With the rise of infrastructure as code and tools like Terraform, there's a shift towards a separate manager pushing policies to gateways, which can introduce complexity. However, advancements like dynamic resets, enabled directly on the gateway without manager intervention, represent a significant leap forward, simplifying operations and propelling the company towards more efficient security management.

The most significant benefit for our customers lies in the familiarity and comfort of transitioning from on-premise Check Point solutions to CloudGuard's unified management system. This seamless continuity offers reassurance and confidence in navigating the cloud security landscape, making the transition smoother and more intuitive for them.

When compared to other migration solutions in terms of identity-centric security threats, Check Point stands out for its efficacy rates, particularly evident in its threat cloud and AI capabilities. The integration of various security features, along with the collaborative aspect where information from all Check Point Gateways feeds into a collective pool, underscores the robust security aspect of the platform. This is where Check Point consistently sets itself apart in the security landscape.

We maintain a high level of confidence in our security posture, provided everything is configured correctly. Check Point offers additional solutions to address gaps beyond the firewall's capabilities, especially in scenarios where threats may circumvent it or exploit other entry points. Network security alone may not suffice, but Check Point's supplementary solutions, such as Network Calabrio, complement our defenses effectively, serving as a solid foundation for our overall security strategy.

Our clients appreciate the familiar look and feel of Check Point's interface, which maintains the security standards they've come to trust. While there are numerous reports comparing efficacy rates of cloud-native solutions, they often fall short in comparison to third-party vendors like Check Point.

The auto-scaling feature is undoubtedly one of the most valuable aspects of having Check Point security in the cloud. It provides excellent protection by dynamically adjusting resources based on demand. Additionally, the centralized reporting and management, accessible through a single pane of glass, offer consistency and efficiency across multi-cloud environments. This unified approach ensures seamless security management regardless of the cloud platform, making it a highly advantageous feature of Check Point's cloud security solutions.

Check Point's primary competitor, Palo Alto Networks, offers a SaaS firewall solution that can be deployed in both traditional virtual networks (VNETs) and virtual wide area networks (VWANs). This firewall solution features auto-scaling and consumption-based pricing, allowing users to scale according to their needs seamlessly. While Check Point does offer some VWAN offerings, they appear to be more static and less tailored to cloud-native environments compared to Palo Alto's dynamic and flexible approach.

I have been working with it for approximately five years.

In terms of stability, I've never encountered any issues where a gateway went down or experienced faults. My experience across various environments has been consistently positive, without any instances of gateway crashes or failures for any specific reasons.

The scalability aspect functions seamlessly, although there's a significant process involved, particularly with the CME and management components recognizing new gateways and pushing necessary files. Despite the complexity, the CME serves as an effective tool for deploying scripts and managing tasks. However, the requirement for management to push configurations to the firewall adds an additional layer of intricacy beyond simply pushing to the gateway.

The technical support provided by Check Point is commendable. Once a case reaches the right hands, resolutions are often swift. However, there can be challenges in initially getting the case directed to the appropriate personnel, which is not uncommon for organizations of our size. I would rate it seven out of ten.

Neutral

I've implemented various deployments, with one of the most extensive being a multi-tier architecture utilizing different scale sets for handling ingress, egress, and east-west traffic internally. This particular deployment spanned across two regions, with a total of twelve instances distributed among the scale sets, each serving a distinct function. Essentially, it aimed to replicate a traditional data center environment in the cloud, catering to the specific needs of the organization.

Lately, I've been engaged in numerous discussions surrounding cloud-native firewall solutions like AWS Firewall or Azure Firewall, as well as offerings such as Palo Alto's SaaS firewall and CloudGuard NGFW.

CloudGuard compares favorably, offering a familiar and user-friendly experience akin to Check Point's traditional products. The trend towards cloud-native solutions is evident, particularly among non-security-focused individuals. The flexibility to assist in migrating customers who are embracing cloud-native approaches, integrating seamlessly with platforms like Azure WolfStack and AWS real stack, is a significant advantage. This ease of migration is a notable strength of competitors like Palo Alto.

It functions well, especially the auto-scaling feature, despite the complexity involved, particularly with integrating Azure load balancers. Consolidating these components would be beneficial, but without a SaaS offering, reliance on Azure's resources or cloud-native resources remains a factor. Overall, I would rate it eight out of ten.

In our Azure deployment, CloudGuard Network Security serves as our cloud firewall.

Using CloudGuard Network Security has streamlined our transition to Azure by providing continuity with our on-premises setup, ensuring seamless management, and allowing us to maintain our existing security protocols without disruption.

We find all the features valuable, particularly the firewall, application control, URL filtering, and HTTPS detection, as they cover our primary security needs effectively. We realized the benefits right away upon deployment.

Improvements needed include better integration with Azure features to match on-premises capabilities, particularly in areas like identity awareness, to ensure seamless functionality across both environments.

I have been working with CloudGuard Network Security for a few months.

We haven't had any stability issues with the product so far.

We haven't had to scale much yet, but we are confident CloudGuard Network Security can meet our needs effectively if required in the future. I would rate the scalability as a nine out of ten.

Overall, Check Point's service and technical support are good, with an effective resolution of issues, although there is currently one open ticket, they typically address root causes efficiently. I would rate the support as an eight out of ten.

Positive

We have seen ROI in time saved due to our familiarity with deployment, integration, and policy creation, avoiding the need for extensive learning or adjustments.

We wanted to maintain familiarity with Check Point while transitioning to the cloud, opting for CloudGuard Network Security in Azure over Azure's native firewall for its effectiveness and seamless integration with our existing network infrastructure.

CloudGuard Network Security offers unified security management across hybrid clouds and on-premises environments, ensuring comprehensive protection across all assets.

Unified security management simplifies our security operations by consolidating all aspects, like web filtering, application control, and firewall management, into a single, easy-to-use platform, enhancing efficiency and effectiveness.

I have high confidence in CloudGuard Network Security because it runs seamlessly like our previous setup and offers robust protection. I chose it over Azure's firewall because Check Point focuses solely on security, providing more features, logs, and insights.

CloudGuard Network Security is deployed across multiple departments and business units, with various consultants connecting in, although the user count isn't high yet, it is set to expand across multiple businesses.

I would advise evaluating CloudGuard Network Security based on what is most effective and familiar, rather than just what's convenient or included, prioritizing what suits your needs best.

Overall, I would rate CloudGuard Network Security as a nine out of ten.

We are primarily using it for access control for our various cloud environments from our on-prem resources.

By implementing CloudGuard Network Security, we wanted granularity and control of the traffic going through our different BDCs within AWS. We use one there. We also wanted identity awareness for going into cloud resources.

CloudGuard Network Security gives us access and visibility into what is going on in our cloud environments. Previously, we did not have any cloud instances. We were just managing the on-prem and then letting it go. It gives a lot of visibility. We could realize its benefits instantly.

CloudGuard Network Security provides us with unified security management across hybrid-clouds as well as on-prem. We were able to manage all of our cloud environments from one central place. We have got CloudGuard in Azure and AWS restricting traffic between those hybrid cloud environments.

We feel very confident in our cloud network security by using CloudGuard Network Security. We get what we would expect with an on-prem firewall. We get all of the functionality and security that we would expect from an on-prem firewall in the cloud. We did not go with our cloud vendor's cloud firewall because they were not able to meet a lot of the security standards that we needed.

The ease of deployment has been nice. It is like managing any of our on-prem firewalls.

The only pain points we have had with it were when we did major version upgrades. Rather than being able to do incremental upgrades on those, we had to completely redeploy. I know that has changed recently, but we had some hiccups when we did the upgrades. This is the only issue we have had.

We have been using CloudGuard Network Security for over four years.

It is very stable. I would rate it a ten out of ten for stability.

It scales pretty easily. At this time, I am not aware of any plans to increase its usage.

Their support is great. I would rate them a ten out of ten.

Positive

We did not use a similar solution previously.

It is a private cloud. We have it in both our private Azure and private AWS restricting access between the individual BDCs and on-prem environment and between the two different cloud environments as well. 

It is primarily deployed by one team, but multiple clients use the cloud services.

I believe we have seen an ROI. We are able to manage it from an already existing management server that we are using for on-prem. Not having to have another product that we are managing outside of Check Point is a big plus.

We looked at cloud-native firewalls. They were not able to meet the security standards that we were able to get by using CloudGuard.

We looked at their IPS solutions with the cloud-native firewalls, but we could not go as granular. With CloudGuard Network Security, we could see the individual protection and fine-tune it.

CloudGuard Network Security is also easier to use than other solutions.

I would rate CloudGuard Network Security a ten out of ten.

We utilize CloudGuard Network Security as virtual appliances deployed within virtual machines, acting as firewalls at the perimeter of our data center in QSaver. These virtual appliances safeguard all internet access originating from the virtual machines at our factory in Curitiba, Brazil.

The challenges we sought to tackle through the implementation of CloudGuard Network Security were to ensure the protection of our servers against threats and attempts to breach them via internet-facing avenues.

We found it advantageous due to its ease of implementation and use. There were no delays in receiving customer devices, which enhances security within the environment.

We enjoy all the benefits typically associated with physical appliances, even while utilizing virtual machines. Although it took some time for customers to fully grasp the benefits, as they weren't immediately clear, over time, they began to recognize the value it brings to their security infrastructure.

It offers us unified security management across hybrid CloudGuard deployments, as well as on-premises. The option to manage it bridges physical devices onto the data center. With consolidated logs accessible on the same management interface, it becomes highly convenient and straightforward to operate.

Comparing CloudGuard's network security to other solutions in terms of ease of use is challenging. Additionally, since we're already utilizing Check Point solutions, integrating it with hardware network security proves to be very straightforward and user-friendly.

We have a high level of confidence in the effectiveness of CloudGuard Network Security.

The SSL spectrum proved to be the most valuable for our incoming connections. This feature enabled us, for instance, to successfully prevent Log4J attack attempts.

New features have been introduced recently, but they have not yet been integrated into CloudGuard Vsec. It would be advantageous to have them implemented as they would improve the performance.

I have been using it for three years.

It provides excellent stability capabilities.

It offers good scalability abilities. We have a plan to increase the utilization of CloudGuard Network Security and its services in the future.

I am satisfied with the customer service and support provided. I would rate it eight out of ten.

Positive

In our deployment environment, each instance is strategically positioned at the forefront of the web servers within the data center, effectively serving its purpose. Specifically, it functions to regulate internet access for the servers and manage inbound connections from internet customers to the servers.

It's remarkably easy to deploy, by far the simplest. For instance, it only took us a few minutes to transition to production. This capability is incredibly beneficial, as it allows us to swiftly assist customers during emergencies by deploying a firewall and addressing any threats they may encounter.

Determining the return on investment can be challenging; however, we've observed other companies operating in the same sector with similar approaches. Despite encountering attacks, we have yet to experience any incidents. This absence of incidents serves as a metric for us, indicating the reliability of our alternative solution.

The pricing is highly competitive and advantageous, offering great value.

I recommend others to give it a try because of its simplicity in deployment, scalability, and usability. Overall, I would rate it ten out of ten.

We mainly use the firewall part. We use it to interface with our cloud environments.

We have a CloudGuard firewall in place, and we have Azure or AWS networks at the backend. We use it to secure workloads and be a bridge to our on-prem as a hybrid solution.

It makes securing our cloud workload super easy, and we are able to push any sort of policy changes we need pretty quickly. It is a lot better than the native cloud firewalls that are available in terms of ease of use and features. Check Point IPS is way more advanced than the native cloud firewall solutions.

CloudGuard Network Security provides us with unified security management across hybrid clouds as well as on-prem. It is fantastic. It makes our security operations a lot smoother because we only have to push policy once to our cloud firewalls and our on-prem firewalls. We can select whichever firewalls we want and hit install. The changes are made across all different types of devices. We had evaluated the native cloud firewalls for a specific use case, but we saw that Check Point firewalls were superior in the aspects that we were looking at for our requirements. 

We just set up the firewalls and forget about them. We only have to do jumbo hotfix upgrades on the major version upgrades. For the most part, the uptime on them is fantastic. We do not have any downtime on them, so we never have to worry about them, which is why I do not have a lot of experience with them. We just set them up and forget about them.

CloudGuard Network Security has been fantastic in terms of identifying threats. Being able to log those cloud firewalls to the same place where all of our other Check Point firewalls are is a huge plus because we can see where something gets prevented by IPS or something like that.

We only use it for the firewall, so it is about security.

I want the upgrades of their CloudGuard solution to major versions to be easier. We have had a few small hiccups. They have different types of cloud clusters called Geo Clusters, and those just cannot be upgraded past a certain point, which is a hurdle that we are currently experiencing.

We have been using CloudGuard Network Security for four years.

Its stability is amazing. We have never had any weird downtime issues with our CloudGuard firewalls.

We do not use any of the auto-scaling features that Check Point provides. We do not have a use case for it, so I cannot attest to that.

When you get the right person, Check Point TAC is fantastic, but sometimes, it can take a while to find the right tech engineer to be able to answer your problem within a reasonable amount of time. Most TAC engineers can answer a question, but some might take longer than others. I would rate their support an eight out of ten.

Positive

It is super easy to deploy. In a few clicks, it is up and going. 

I deployed it myself.

We have definitely seen an ROI, but I am not sure how to quantify that. I am satisfied with it. 

It is definitely easy to use and simple. Compared to the native cloud firewalls where if they do not have a feature, you are out of luck, I feel that Check Point has a very superior feature set.

I like the flexibility because I am pretty sure you can use the same license on Azure or AWS. I forgot the name of the license, but there is a specific type you can use that lets you interchange them, and that is pretty good. I like that. 

I would rate it a nine out of ten. The only reason it is not a ten is that sometimes there are hiccups when we have to interact with it, such as while upgrading. These are small things, but I wish it was more seamless than it already is. It is already pretty seamless, but there can always be improvements.

We use it to secure our network. We use it to manage our firewalls and some of the other services that we have with them.

By implementing CloudGuard Network Security, we mainly wanted visibility.

CloudGuard Network Security saves time from having to go to multiple places to look for different things. It gives us the ability to see it all in one place. We could realize its benefits in less than 90 days.

CloudGuard Network Security provides unified security management across hybrid-clouds as well as on-prem. We are able to combine different aspects into one place.

I am confident in our cloud network security. Check Point is a great company. They stay up to date on everything that is happening, and they keep us informed about anything that needs to be done to maintain that security posture.

The visibility is most valuable. It allows us to see all of our devices from one place, and it gives us the ability to manage push updates and things like that from one place.

Its price is fair, but it can be more favorable.

We have been using CloudGuard Network Security for about two years.

It feels very stable to me.

Its scalability is good. It is being used across multiple departments. There are 300 users and a lot of endpoints.

We do not have any plans to increase its usage this year. We might do that in 2025.

Their support is great. I would rate them a nine out of ten.

Positive

We did not use any similar solution previously.

I was not too much involved in its deployment. My role is not as technical as it used to be.

We worked with partners to help us with the deployment who had expertise in this, so it was pretty straightforward. Our implementation strategy was to work with a partner.

We had a Check Point partner for implementation. Our experience with them was good. 

We have seen an ROI in terms of time and labor costs. People do not have to spend as much time on different things. They have one interface to manage different things.

It is fairly priced, but it can be a little expensive from time to time. 

I am not aware of any solutions that we have evaluated. Check Point is our firewall vendor, so we went with them. We were able to have just one partner and one point of contact for any issues. Having a bunch of different products creates problems of its own. You do not know whom to call and whom not to call for an issue. Having one single contact to oversee all that is beneficial to us.

I would advise taking your time. Be patient, and you will see results. It does not take much time, but some people want to see a return right away. It took us about 90 days to see the return. It is more based on you getting in it and doing things with it, but be patient.

I would rate CloudGuard Network Security a nine out of ten.

We've implemented CloudGuard in Azure, configuring it as firewalls and file management systems. These functionalities skillfully oversee our API application and various aspects of our data center environment. Our entire infrastructure, hosted within Azure's data centers, is effectively managed by CloudGuard, ensuring comprehensive security coverage.

One of the notable benefits we've observed is the ease of deployment in our environment. It offers remarkable flexibility in how we configure and utilize the resources. This flexibility allows developers to seamlessly collaborate with network security experts to ensure that our applications are secure. This level of assurance has instilled confidence within our teams, knowing that we're deploying solutions that will be effectively managed.

CloudGuard Network Security offers unified security management across hybrid cloud and on-premises environments. With this comprehensive feature set, we benefit from enhanced flexibility. We can seamlessly manage both on-premises and cloud environments from a single interface, simplifying our operations and providing a centralized view of our data.

On a scale of one to ten, our confidence level in CloudGuard Network Security stands at an eight. This rating signifies that it surpasses the average level of confidence. While we acknowledge that there's always room for improvement in technology, we believe that CloudGuard Network Security has demonstrated its effectiveness and reliability.

The data center objects, checks, and other components are thoroughly examined, allowing us to incorporate them into our policy definitions. This approach has proven to be highly effective, akin to the standards typically seen in on-premises environments.

There is room for improvement regarding the technical support provided. Having a more refined and advanced feature would offer significant benefits.

I have been using it for three and a half years.

In terms of stability, it's rock solid. I haven't encountered much trouble over the past three and a half years.

It performs well in terms of the use case scenario where deployment is required, and its scalability is satisfactory. Overall, I would say it's good enough for our needs.

In terms of tech support, I would rate it a four on a scale of one to ten, which is lower than it used to be. Previously, I would have rated it a seven. Over the years, I've noticed a decline in the technical expertise of support staff. While I have extensive experience with Check Point products spanning fifteen to twenty years, I find it increasingly challenging to get the level of assistance I need. Support personnel nowadays seem to specialize in only one or two products, making it difficult to get comprehensive assistance for complex issues. This lack of holistic understanding delays problem resolution and frustrates customers.

Neutral

We've been loyal users of Check Point products for quite some time now. The company has a strong reputation in the industry, and I have more experience with Check Point products compared to others. It offers some of the best services available in the industry.

When comparing CloudGuard Network Security to other solutions for identifying security threats, it emerges as one of the leaders in the field. Our statistics demonstrate its effectiveness, with a notable ninety percent or higher success rate. Check Point covers the majority of our security needs, achieving a remarkable ninety-nine percent success rate, which is among the best in the industry. In terms of setup and reliability, we have a strong preference for CloudGuard.

We opted not to proceed with our vendor's cloud firewall solution because it lacked a comprehensive understanding of our network infrastructure. These solutions are primarily tailored to the specific environment of the vendor, which may not align with our needs. Instead, we prefer utilizing an NGFW appliance or a more versatile NBI device, such as those offered by Check Point. This approach allows us to avoid vendor lock-in and leverage familiar security devices. By partnering with third-party vendors like Check Point, we gain flexibility and can choose products specifically designed for security purposes. This contrasts with relying solely on the cloud service provider's offerings, which may prioritize their products over comprehensive security. In my opinion, solutions like those from Check Point offer a more mature and reliable approach to network security.

During the initial deployment phase, we encountered a learning curve as we transitioned from traditional firewall deployment methods to cloud-based environments. One concern was whether the throughput would match that of physical appliances. However, we ultimately found the performance to be satisfactory and were pleased with the results. We engaged with both Check Point and third-party experts to assist with deployment, given that it was a new process for us. Drawing on their expertise proved invaluable in navigating the deployment process smoothly.

The return on investment has become evident over the past three years. As a global company, we've successfully migrated over two hundred applications from on-premises to the cloud. This transition has provided us with greater flexibility and enhanced security measures, allowing us to efficiently patch and maintain applications without significant downtime. Overall, it has significantly improved our operational efficiency and streamlined our processes.

We explored both pay-as-you-go and build-your-own-licensing models, and found both to be competitive. While everyone desires lower prices, we're content with the current pricing structure, as it meets our needs effectively.

Overall, I would rate it seven out of ten. 

We use it for security in public cloud implementations, specifically in AWS and Azure. 

For my customer's organization, it's important because they can work with the same kind of solution. They don't need many different solutions in many different use cases. And then they have better management of the solution in general.

CloudGuard Network Security provides unified security management across hybrid clouds as well as on-prem. It's very important because when I have unified security, I have better control of the situation. 

If there's an attack or something like that, we can react faster. It's easier for everyone in the organization to work with the Infinity platform.  

The integration in the Infinity portal. It's very important for someone to consider the solution if you need to work through a purchase partner. Because they can manage the entire solution consistently with the on-premise Quantum solution and the cloud solution in Azure or AWS without that integration, it's valuable.  

It needs to cover additional kinds of infrastructure, like containers and serverless options. It's somewhat limited in that area.

I have been using it for six months. 

It is a stable product. I haven't heard any problems or complaints from my customers. 

It's quite scalable because we scale by compute units. It's very easy for us to make a new deployment.

We used to replace cloud-native solutions from Azure directly or AWS. We don't implement those originally.

It's important for us because we have had a lot of traditional customers. Then, it's a good way to extend this security to the new deployments in public clouds. It's very important for us. 

Additionally, the customer is going to find another choice in the market.

The deployment is easy.  

The price is fair for most of the customers. We don't find the price excessive. It's okay. We can sell it. It's not really hard.

So, the pricing is good. 

I would recommend using it. 

Overall, I would rate the solution a nine out of ten. It is very good. Because it's very well integrated with the traditional platform, especially the Infinity portal part. The unified security concept is very sound for that.

However, there is always room for improvement, we always have to extend the capabilities to other use cases.