Check Point IPS Reviews

Check Point IPS is used as a security feature to prevent zero-day attacks and the execution of malicious files in our network. Check Point IPS is an Intrusion Prevention System that prevents malicious and zero-day attacks based on real-time file transfers over the network.

Based on the database of signatures and real-time analysis, it prevents our network from experiencing cyber threats and attacks.

Check Point IPS is a security blade in our security gateway, which is Check Point. I have configured Check Point IPS as a security profile, and it has been mapped to our LAN-to-WAN security policy. Whenever any malicious traffic or activity is detected, the IPS detects it and blocks that traffic. That is the main use case for our organization.

We have a security gateway where I have enabled this security feature. It is an inbuilt solution of the Check Point gateway.

The best feature is its automated threat intelligence, which is cloud-based. Its database receives automatic updates, so I do not have to manually perform any updates or handle anything related to threat signature updates. The second feature is its security capabilities, which effectively block malicious traffic.

The automated threat intelligence feature is reducing our manual work and saving our time.

We have had multiple security incidents that were secured by Check Point IPS.

There was some malicious traffic that was blocked, and I could clearly see it in the logs. That was an incident, and Check Point IPS successfully blocked that traffic.

After implementing Check Point IPS, it has really reduced the incidents from a number of incidents to zero.

Check Point IPS is working well for our organization. In the future, more automated and more AI-based intelligence could be fed into Check Point IPS, and that would be helpful for us.

I have been using Check Point IPS for more than three years.

Based on my experience and hands-on work, Check Point IPS is the best. I would rate this product a nine out of ten.

On-premises

My main use case for Check Point IPS is to have it deployed across our company infrastructure to proactively block intrusion attempts and lateral movement between office locations.

Check Point IPS has positively impacted my organization by automatically blocking intrusion attempts, including SQL injections and port scans, before they reached critical systems.

The solution has reduced incident response time by enabling faster detection and mitigation, cutting response time by over 50% for our network team.

The best features Check Point IPS offers are real-time threat prevention, ThreatCloud integration, and automatic updates.

Real-time threat prevention blocks known and unknown attacks instantly using signature and behavior-based detection. The ThreatCloud integration leverages global threat intelligence to stay updated on the latest vulnerabilities and exploits.

An area of improvement for Check Point IPS would be simplified configuration and performance optimization.

The initial setup and tuning can be complex, and more guided wizards or templates would help streamline deployment.

I have been using Check Point IPS for five years.

The customer support for Check Point IPS is good, and I have had to interact with them.

Neutral

I did not previously use a different solution before Check Point IPS.

I have seen a strong ROI with Check Point IPS by preventing costly breaches and minimizing downtime.

Before choosing Check Point IPS, I did not evaluate other options.

My advice to others looking into using Check Point IPS is that if your organization needs proactive, real-time protection against network threats, Check Point IPS is a smart investment. I rate this solution 8 out of 10.

On-premises

Other

Our primary use of Check Point IPS is that this solution comes with the Check Point next generation firewall, which enables security features configured and enabled in our LAN to WAN policies. Any packet passing through the LAN network to our local network passes through by checking the IPS; anything with a malicious signature detected results in the IPS blocking that traffic.

The process works with some predefined signatures in the Check Point IPS database that gets updates from the Check Point cloud. Any new signatures detected in the cloud are sent to Check Point IPS, and if any related signature matches the real-time network traffic, it detects and blocks it, ensuring that no malicious traffic passes into our private network.

Check Point IPS offers one of the best cybersecurity features to detect malicious signatures trying to infiltrate our cloud devices, which could pose a problem to our network, acting as a security prevention mechanism.

The feature helps us catch threats and has a real-time detection capability for malicious threats, responding in a faster way.

Check Point IPS has positively impacted our organization as we are able to detect and prevent emerging cyber threats, which I would describe as types of attacks.

I don't see any areas for improvement with Check Point IPS; everything is included.

I have been using Check Point IPS for almost 2.5 years.

We are currently using Check Point IPS; there is no prior solution.

I was not part of the team presenting pricing and setup cost decisions, so I don't have specific information to comment on this matter.

Before choosing Check Point IPS, we were evaluating the Fortinet IPS solution.

I will give Check Point IPS a score of nine out of ten.

I chose nine instead of ten because I believe there is always something to improve.

There are multiple positive outcomes, including our ability to detect and prevent emerging cyber threats.

I rate Check Point IPS nine out of ten.

On-premises

We are a government company providing services to our revenue department. We started out doing services for the tax administration and customs department, and later expanded beyond that. We use Check Point IPS primarily in these roles.

Check Point IPS is very useful in providing access control at the network level and preventing access from suspicious sources. Our organization benefits from Identity Awareness, firewall functionality combined with IPS, and in some cases, URL filtering. The granularity of controls has improved over time, providing better security posture even though I am not the one handling the hands-on configuration.

We have probably been using Check Point IPS from around 2002.

There were no specific issues faced during deployment; it was straightforward.

Check Point IPS provides a very stable and reliable environment.

Check Point IPS is very scalable. We have moved to a hyper-scale master environment, allowing us to scale by adding additional gateways to the clusters.

The customer service is highly rated. Our technical teams have personal relationships with our account executives and direct support people. I rate their support eight or nine out of ten.

Positive

There is a comparison mentioned with Fortinet. We have found it would be cheaper for us to keep Check Point IPS rather than migrate to Fortinet.

The initial setup is straightforward.

We have not measured any return on investment directly.

Comparisons with Fortinet show that Check Point IPS is relatively more expensive, but we found it cheaper to retain it rather than switch.

When compared to Fortinet, Check Point IPS was found to have fewer vulnerability announcements, reinforcing its stability.

We rate Check Point IPS at eight out of ten. We recommend it to others and have relationships with local partners and Check Point Latin America directly. The overall solution is rated an eight out of ten.

My main use case for Check Point IPS is as an Intrusion Prevention System.

Check Point IPS has positively impacted our organization by helping us secure our environment, leading to fewer complaints about security issues. It's efficient.

Since implementing Check Point IPS, we have noticed about 15% fewer security issues.

Check Point IPS could be improved as the deployment is complex.

I have been using Check Point IPS for almost one year.

The complexity of Check Point IPS deployment is due to integration with other tools.

Check Point IPS is stable in my environment, and I have not experienced any downtime or issues with reliability.

The scalability of Check Point IPS is pretty good.

Customer support for Check Point IPS is satisfactory, and I have had a positive experience when reaching out for help.

Positive

I did not previously use a different solution before Check Point IPS.

My experience with pricing, setup cost, and licensing for Check Point IPS has been satisfactory.

I have seen a return on investment with money saved and time saved.

My experience with pricing, setup cost, and licensing for Check Point IPS has been satisfactory.

Before choosing Check Point IPS, I evaluated other options such as Palo Alto.

My advice to others looking into using Check Point IPS is that it's important for your network security. I rate Check Point IPS ten out of ten.

On-premises

Our primary use case is to protect the on-prem infrastructure. The IPS blade is integrated into our Check Point environment. The product is the core of our security infrastructure that we use to filter and block attempts for connection into resources.

Due to the pandemic, the company needed to improve its compliance with traffic risk management since all employees went full WFH.

This has turned into more efficient operational control of internal traffic, where numerous threats have been identified while working in the office as most malware is somehow admitted by someone with access to the company network, either unintentionally or not. This drove revenue growth as fewer resources had to be spent by the IT department to fight cyber threats.

We've seen how this firewall has operated on real-time threats to infrastructure by detecting, neutralizing, eliminating, and then patching against malware.

We can test these patches post-deployment in less than one day. We generate reports that include the activity for the time we desire and gauge the performance of the software.

The IPS module offers protection against malicious inbound Internet traffic to our DMZ network and inspects and blocks outbound Internet traffic to sites that could be a danger to our internal users.

IPS definitions are quick & simple. It is a robust system to fortify the digital perimeter. It can prevent DDOS attacks by analyzing traffic patterns. 

Another valuable feature of the solution is that the product's stability has been very good. The product's uptime has been massive, and there has not been any downtime, making it a very good product.

The product has allowed us to proactively mitigate any network access misconfiguration resulting from delegation. It enables us to define our own rules for detection.

It has false positives.

There is no option to have automatic exceptions from a rule.

The initial deployment can be a challenge.

The upgrade process or the maintenance of the devices for each firmware upgrade requires one to break the cluster and run a specific moment at a time, a single node concept. 

The firmware upgrade process is quite cumbersome.

There is room for improvement in the pricing model. It can be more competitive.

Moreover, another area of improvement is in the maintenance of the solution because it requires a lot of people to maintain the solution. Some tasks can be automated, and I would like to see a feature where we can automate the tasks.

I have been using Check Point IPS for more than 15 years.

On-premises

My main use case for Check Point IPS is to monitor and update various rules and prevent any possible attack.

In a situation where Check Point IPS helped me prevent a specific attack, prevention is key; we monitor and update the rules once a week for our client, and keeping everything monitored and updated prevents any problem.

I do not have anything else to add about my use case or how I rely on Check Point IPS.

The best features Check Point IPS offers are how easy and how reliable it is; it can prevent a lot of signatures, which is very nice, and it's actually essential in this year.

The real-time protection for our client is what makes my day-to-day work easier.

Check Point IPS has positively impacted my organization by making the infrastructure actually more protected now.

I measure that increased protection by seeing fewer incidents because we update every week, so there is no time to wait and create a breach.

For the product itself, there is nothing that I wish worked better or was easier, but it can become complex to manage all the rules if the infrastructure is very big.

I do not want to add more about the needed improvements.

I have been using Check Point IPS for two years.

Check Point IPS is very much stable.

The scalability of Check Point IPS is on point, while the customer support is sometimes a bit slow.

I would rate the customer support an eight.

Positive

I did not previously use a different solution before Check Point IPS.

I have seen a return on investment since using Check Point IPS, as evidenced by fewer incidents.

I am not in charge of pricing, setup cost, and licensing.

Before choosing Check Point IPS, I did not evaluate other options.

The advice I would give to others looking into using Check Point IPS is that it's not for not-advanced users; a new administrator can be overwhelmed.

My company has a business relationship with this vendor as a partner.

I was offered a gift card or incentive for this review.

I do not have any additional thoughts about Check Point IPS before we wrap up.

On a scale of one to ten, I rate Check Point IPS a nine.

Hybrid Cloud

Microsoft Azure

We primarily use Check Point IPS for cybersecurity, specifically when there is a need for internal and external connections. We use it to monitor performance and take necessary actions when events occur. We also use it for firewall solutions.

Check Point IPS has helped us maintain cybersecurity through effective monitoring and behavior analytics.

Behavior analytics and monitoring capabilities of Check Point IPS are valuable, especially for cybersecurity purposes.

It's hard to specify areas for improvement without a deeper investigation. However, usually, IPS does its job. Some challenges might exist with integration depending on the environment.

We have been using the solution for five years.

The solution is 99.8% stable.

Flexibility and scalability depend on the solution and the requirements. So far, we haven't faced any requirements that couldn't be submitted.

The customer service and support are satisfactory. I would rate them quite high.

Positive

The initial setup can be complicated if you are not familiar with what you're doing. It usually requires two people for a successful installation.

Check Point IPS usually requires two individuals for installation, depending on their certifications.

Our return on investment is usually based on a three-year period.

Pricing is average. Usually, the price listed isn't adhered to, and negotiations occur.

We compared with solutions from vendors like Fortinet, Cisco, and Palo Alto. Palo Alto is perceived as better in performance and technical aspects, while Fortinet is seen as less robust.

I'd rate the solution eight out of ten.