Try our new research platform with insights from 80,000+ expert users

SonicWall Capture Advanced Threat Protection vs Trellix Network Detection and Response comparison

SonicWall and Trellix are both solutions in the Advanced Threat Protection (ATP) category. SonicWall is ranked #28, while Trellix is ranked #13 with an average rating of 7.6. SonicWall holds a 1.3% mindshare in ATP, compared to Trellix’s 5.2% mindshare. Additionally, 100% of SonicWall users are willing to recommend the solution, compared to 97% of Trellix users who would recommend it.
SonicWall Capture Advanced ...
Read 8 SonicWall Capture Advanced Threat Protection reviews
  • 321 Views
  • 273 Comparison Views
100% willing to recommend
Trellix Network Detection a...
Read 39 Trellix Network Detection and Response reviews
  • 2,006 Views
  • 943 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 1, 2024

Trellix Network Detection and Response and SonicWall Capture Advanced Threat Protection are products competing in network security. Trellix appears to have an edge in threat intelligence integration and customer support satisfaction, while SonicWall leads in threat prevention capabilities.

Features: Trellix provides dynamic analytics, real-time data visualization, and effective threat intelligence integration. SonicWall offers cloud-based multi-engine sandboxing, comprehensive zero-day threat prevention, and robust firewall capabilities for enterprises.

Room for Improvement: Trellix could enhance its zero-day threat handling speed, expand its threat database for faster identification, and improve real-time response capabilities. SonicWall might improve its ease of configuration, reduce complexity in deployment, and offer more granular reporting features.

Ease of Deployment and Customer Service: Trellix ensures quick deployment and seamless integration with existing systems, backed by comprehensive support. SonicWall's deployment is more complex due to extensive configuration options but offers flexible network arrangements and strong support channels.

Pricing and ROI: Trellix is cost-effective, focusing on minimizing setup expenses while maximizing returns through efficient threat detection. SonicWall has higher initial costs justified by long-term threat prevention benefits, providing substantial ROI through its extensive protection features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response Report (Updated: September 2025).
Buyer's Guide
SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response
September 2025
Download the complete report
Helped 868,787 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SonicWall Capture Advanced ...
Ranking in Advanced Threat Protection (ATP)
28th
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
8
Ranking in other categories
No ranking in other categories
Trellix Network Detection a...
Ranking in Advanced Threat Protection (ATP)
13th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Network Detection and Response (NDR) (10th)
 

Mindshare comparison

As of October 2025, in the Advanced Threat Protection (ATP) category, the mindshare of SonicWall Capture Advanced Threat Protection is 1.3%, up from 1.2% compared to the previous year. The mindshare of Trellix Network Detection and Response is 5.2%, up from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP) Market Share Distribution
ProductMarket Share (%)
Trellix Network Detection and Response5.2%
SonicWall Capture Advanced Threat Protection1.3%
Other93.5%
Advanced Threat Protection (ATP)
 

Featured Reviews

MA
Has a good configuration but the price should be more competitive
Our primary use case of this solution is for security.  It's a good solution but the price is high. It also has an easy configuration. The feedback that we get from our customers is that it's a good product. Our customers are mostly smaller enterprises.  The price should be more competitive.  I…
Read full review
BiswabhanuPanda - PeerSpot reviewer
Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one
The in-depth investigation capabilities are a major advantage. When the system flags something as malicious, it provides a packet capture of that activity within the environment. That helps my team quickly identify additional context that most other tools wouldn't offer – like source IP or base64 encoded data. We can also see DNS requests and other details that aren't readily available in solutions like Check Point or others that we've tried. The detection itself is solid, and their sandboxing is powerful. There's a learning curve – you need a strong grasp of OS-level changes, process forking, registry changes, and the potential impact of those. But with that knowledge, the level of information Trellix provides is far greater than what we've seen elsewhere. The real-time response capability of Trellix has been quite effective, although it's not very fast. The key is this solution's concept of 'preference zero.' They don't immediately act on a zero-day. For example, the solution has seen a piece of malware for the first time. It'll let it in, then do sandboxing. Maybe after four or five minutes, it identifies that specific file's DNX Secure Store as malicious. At that point, they update the static analysis engine, and it gets detected if anything else tries to download the same file. There is that initial 'preference zero' concept, like with Panda. You may not hold traffic in the network. That's standard in the industry; we don't do much about it. To address that, we also have endpoint solutions. We use SentinelOne in our environment, which helps us identify threats like Western Bureaus and others.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The stability of the solution is good. We haven't had any breaches or crashes. It's been very stable for us."
"I like this setup for a firewall. You can set things up very easily and you can automate items as well. It's a very robust firewall solution for enterprise as well as small businesses."
"We use it for protection against viruses and ransomware attacks."
"Provides good protection and security."
"It also has an easy configuration. The feedback that we get from our customers is that it's a good product."
"The reporting that you get from it is the most valuable feature. You can see it via the appliance itself, and also via the MySonicWall account for the registered device. You are able to select the file if it's malicious, and you can select it in the reporting and see what triggered it, and things like that. I found that to be quite useful."
"We get alert messages whenever there is a new threat. We are notified at the firewall level that things are blocked, which keeps us in our comfort zone."
"The ATP (Advanced Threat Protection) on scanning is the most valuable feature."
More SonicWall Capture Advanced Threat Protection pros
"The MVX Engine seems to be very capable against threats and the way it handles APTs is impressive."
"It allows us to be more hands off in checking on emails and networking traffic. We can set up a bunch of different alerts and have it alert us."
"The installation phase was easy."
"Initially, we didn't have much visibility around what is occurring at our applications lower level. For instance, if we are exposed to any malicious attacks or SQL injections. But now we've integrated FireEye with Splunk, so now we get lots of triggers based on policy content associated with FireEye. The solution has allowed for growth and improvement in our information security and security operations teams."
"Trellix NDR provides an essential defense by automatically responding to network incidents that firewalls may not catch."
"The most valuable feature of the solution stems from how it allows users to do the investigation part. Another important part of the product that is valuable is associated with how it gives information to users in the form of a storyline."
"Improved our systems and our customers' by providing better malware protection, defense against zero-day threats, and improved network security."
"It is stable and quite protective. It has a lot of features to scan a lot of malicious things and vulnerabilities."
More Trellix Network Detection and Response pros
 

Cons

"Having an on-premise solution as well would be an option for some people, but they'll want to use a cloud solution for their sandboxing. Certain sites would want to keep all the checks done on an on-premise appliance. All the checking, rather than sending that up into a cloud engine."
"The setup needs improvement. It needs to be made more user-friendly."
"SonicWall had a recent layoff. This is a concern for us, because now we are missing the local presence from both the engineering and sales side."
"SonicWall should promote their roadmap and improve their marketing to customers."
"I would say the solution needs a much simpler user interface, but the functionality of the firewall is quite extensive. You need the user interface to be that way. However, if there was a way to make the user interface a little easier, that would be great."
"If anything at all, it would be some very minor updates that need to be done, but in terms of changes, nothing comes to mind."
"It does fare well against enterprise products."
"We would like to get immediate alerts from the alerting system without using third-parties."
More SonicWall Capture Advanced Threat Protection cons
"Cybersecurity posture has room for improvement."
"A better depth of view, being able to see deeper into the management process, is what I'd like to see."
"Certain features in Trellix Network Detection and Response, such as using AL-type commands, may initially pose a challenge for those unfamiliar with such commands. However, once users become accustomed to the system, it becomes easier to use."
"It is not a very secure product."
"Technical packaging could be improved."
"As far as future inclusions, it would be useful to display more threat intelligence, such as the actual area of the threat and the origin of the web crawling (Tor and Dark Web)."
"Its documentation can be improved. The main problem that I see with FireEye is the documentation. We are an official distributor and partner of FireEye, and we have access to complete documentation about how to configure or implement this technology, but for customers, very limited documentation is available openly. This is the area in which FireEye should evolve. All documents should be easily available for everyone."
"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."
More Trellix Network Detection and Response cons
 

Pricing and Cost Advice

"The best deal from SonicWall is to buy the HA pair. When you buy the initial one, you receive the second one at a significant discount. If there is an event and something happens to one firewall, then you have the second firewall to roll into. For the price, it's pretty to tough to beat and not a lot of other firewall vendors offer it. You battle for a discount on both. Where with SonicWall, if you buy one, the second one is at half price. It's pretty straightforward."
"It's thirty dollars per user and we have 30 users."
"We get our value for our money."
"When you compare it with other solutions, they are cheaper and more economical."
"Its price is a bit high. A small customer cannot buy it. Its licensing is on a yearly basis."
"Pricing and licensing are reasonable compared to competitors."
"When you purchase FireEye Network Security NX, will need to purchase a megabit per second package. You must know your needs from day one."
"The user fee is not as high but the maintenance fee is expensive."
"Because of what the FireEye product does, it has significantly decreased our mean time in being able to identify and detect malicious threats. The company that I work with is a very mature organization, and we have seen the meantime to analysis decrease by at least tenfold."
"When I compare this solution to its competitors in the market, I find that it is a little expensive."
"It's an expensive solution."
"The tool is a bit pricey."
More Trellix Network Detection and Response pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
868,787 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Comms Service Provider
12%
Financial Services Firm
12%
Manufacturing Company
10%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise2
By reviewers
Company SizeCount
Small Business19
Midsize Enterprise8
Large Enterprise19
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about FireEye Network Security?
We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement an...
See all answers
What is your experience regarding pricing and costs for FireEye Network Security?
While I do not handle pricing directly, it is known that there is a variety of customers with different licensing needs, which depends on the organization's size and policy.
See all answers
What needs improvement with FireEye Network Security?
The Trellix solution could be improved by enhancing the Central Management Console for faster visibility, which would help in network detection response. Networking often involves complexity that c...
See all answers
 

Comparisons

Fortinet FortiSandbox vs SonicWall Capture Advanced Threat Protection Logo
Fortinet FortiSandbox vs SonicWall Capture Advanced Threat Protection
Compared 41% of the time
Microsoft Defender for Office 365 vs SonicWall Capture Advanced Threat Protection Logo
Microsoft Defender for Office 365 vs SonicWall Capture Advanced Threat Protection
Compared 31% of the time
Palo Alto Networks WildFire vs SonicWall Capture Advanced Threat Protection Logo
Palo Alto Networks WildFire vs SonicWall Capture Advanced Threat Protection
Compared 29% of the time
More SonicWall Capture Advanced Threat Protection Competitors
Palo Alto Networks WildFire vs Trellix Network Detection and Response Logo
Palo Alto Networks WildFire vs Trellix Network Detection and Response
Compared 13% of the time
Fortinet FortiSandbox vs Trellix Network Detection and Response Logo
Fortinet FortiSandbox vs Trellix Network Detection and Response
Compared 10% of the time
Trend Micro Deep Discovery vs Trellix Network Detection and Response Logo
Trend Micro Deep Discovery vs Trellix Network Detection and Response
Compared 8% of the time
Darktrace vs Trellix Network Detection and Response Logo
Darktrace vs Trellix Network Detection and Response
Compared 6% of the time
Zabbix vs Trellix Network Detection and Response Logo
Zabbix vs Trellix Network Detection and Response
Compared 6% of the time
More Trellix Network Detection and Response Competitors
 

Product Reports

Buyer's Guide
Advanced Threat Protection (ATP)
September 2025
SonicWall Capture Advanced Threat Protection reportDownload SonicWall Capture Advanced Threat Protection product report
Buyer's Guide
Trellix Network Detection and Response
September 2025
Trellix Network Detection and Response reportDownload Trellix Network Detection and Response product report
 

Also Known As

No data available
FireEye Network Security, FireEye
 

Overview

SonicWall Capture, a cloud based service available with SonicWall firewalls, revolutionizes advanced threat detection and sandboxing with a multi-engine approach to stopping unknown and zero-day attacks at the gateway, and with automated remediation. Customers benefit from high security effectiveness, fast response times and reduced total cost of ownership.

SonicWall

Detect the undetectable and stop evasive attacks. Trellix Network Detection and Response (NDR) helps your team focus on real attacks, contain intrusions with speed and intelligence, and eliminate your cybersecurity weak points.

Trellix
 

Sample Customers

Wonder Cement, Foster Clark Products
FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems
Buyer's Guide
SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response
September 2025
Free Report: SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response
Find out what your peers are saying about SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response and other solutions. Updated: September 2025.
DOWNLOAD NOW
868,787 professionals have used our research since 2012.
See our SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.