WatchGuard Firebox Reviews

The basic functionality is fantastic. It has been performing well. I generated a report on one machine, using that as the deployment machine. When scanning the network, it discovered machines on the network and deployed the same endpoint protection from that one machine I have on my network. 

I can see all of that from any cloud solution. So far, it has been really easy to install, deploy, and have visibility on the endpoints that I manage.

I'm just looking for a few extra features, which are likely included in XDR and the other additional software services. Mainly the FortiEDR system. If I go through the computer status and look at the risk, it's a very basic assessment. 

Compared to Rapid7, which is a highly rated vulnerability scanner,  WatchGuard is more limited. Rapid7 can give me vulnerabilities like autorun being enabled and provide solutions to fix them. It can also reassess vulnerabilities. 

However, the EDR Core I'm using only gives me basic information, like "File full of fire and execution detection" as a high vulnerability. It doesn't tell me how to fix it, just that it's a risk. It's very minimal in terms of risk assessment. Rapid7 would say, "This software is outdated," or "You're using an older version of SQL." It's much more detailed, whereas EDR Core is more scaled-down and doesn't provide a full assessment.

So, I'd like a few extra features, especially around threat severity assessment.

I have actually been using this for the past two weeks because I'm using it in a test environment before I deploy it into anything. 

I want to make sure that the features they are providing are what my client really wants. Regarding compliance, it really receives no complaints. 

So, with the EDR tool, which is what I currently use, I have deployed it in my business. I checked if it could gather my asset information, software information and scan my machines for any malware. So, that basic functionality is fantastic. 

It has been stable so far. I haven't noticed any performance impact on my machines. My only complaint is that I can't schedule scans. I can only see live monitoring of micro activity. I'd like to schedule scans at specific times, but maybe that feature is only available in higher subscription tiers.

I've only been using it for two weeks. I would like to see more features, especially with the addition of xDR or Endpoint Detection and Response Pro (EDR Pro). 

I'm still exploring what's available in my current plan. Once I understand everything better, I'll reach out to WatchGuard if I need additional features or clarification. 

However,  I requested a full cybersecurity overview from their sales department to explore all their solutions, including network asset management, penetration testing, etc. They'll recommend different subscription tiers based on my needs.

Fortinet is the main competitor, especially when considering firewall and firewall configuration. Microsoft Defender for Endpoint (MDE) is also in the mix, as some of our clients use it. These are competitors for a comprehensive security offering, not just antivirus. 

Other competitors who offer similar features like asset management would be Trellix, SentinelOne (formerly McAfee), Microsoft Azure Sentinel, and Palo Alto Networks Cortex XDR.

In my experience, WatchGuard shines in deployment simplicity, especially for firewalls and firewall configuration. The renewal process is also easier, and their documentation, support library, and overall support experience are excellent.

The initial setup was easy. It took ten minutes. I read the instructions. I downloaded the software and installed it on my machine in a minute, and it automatically showed up in the cloud console. 

It even identified other machines on the network and asked if I wanted to deploy protection to them. All I had to do was provide admin credentials and let it run. Within half an hour, all the protected machines were visible in the cloud console, including my servers and workstations. 

I would rate my experience with the initial setup a ten out of ten, where one is difficult, and ten is easy. One of the easiest EDR deployments I've ever done.

Some parts are deployed from the cloud. I have my cloud account, but I downloaded the client software that I executed on individual machines. So, it's hybrid, but the core Threat platform is in the cloud. I just installed the client on each machine. So, it's primarily a cloud solution.

I did it all myself. 

The pricing is acceptable and competitive. WatchGuard's pricing is in a range where they can compete effectively with other vendors. WatchGuard offers similar features for a comparable price, making them a good option for small businesses like ours. 

We mainly support small businesses with 1 to 5 users, or maybe up to 50 users at most. That's why we chose WatchGuard. It's cost-effective for small office, home office (SOHO) environments.

It is very easy to use.  It's designed for anyone, even non-technical folks like myself. Anyone could pick it up. It's like "IT for Dummies" - read it, and boom, you're a WatchGuard specialist! But, knowing deployment requirements helps, but WatchGuard makes it user-friendly.

Overall, I would rate the solution a nine out of ten. 

I use the solution in my company mainly for security management and also for VPN.

The most valuable feature of the solution is its ease of use. For budgetary purposes, it meets our requirements.

For most of the part, the tool's interface is quite simple. The product can improve in terms of layout to provide easier access and viewing to users, especially for the reports.

One of the things that I think is missing in the tool is the area of managing IPv4 traffic via the IPv6 tunnel. If a few features were added to the tool, it would be great for migrating our network from IPv4 to IPv6.

I have been using WatchGuard Firebox for three years.

Considering we have even used the tool in our company for the past three years, we don't see much problem with the devices, except with what we call the updating and patching processes, which require some downplay and everything. I think we are quite satisfied with the tool's performance in our company.

I do believe the solution provides devices with a profile for a much higher requirement, but it all depends on the number of users and everything. Currently, my company is not that big, but we are supported by good vendors. I do believe the tool is scalable in terms of the devices because the product does provide a much higher model, but we don't need it because we are quite a small company.

In my company, we have only around 200 users, so we don't have many staff members.

My company contacted the solution's technical support regarding the services, especially when we had some new requirements in terms of configurations and settings or when there were new protocol rules and policies and policies that needed to be implemented. I rate the support an eight out of ten.

Positive

Previously, we used Sangfor, which is a brand from China, for our firewall and internet access management, but we switched to WatchGuard Firebox three years ago. One of the biggest reasons to use WatchGuard Firebox was related to the area of expertise. Our team or staff had experienced some lack of knowledge in Sangfor. After my company figured out which product was easy to learn and after making some comparisons, we decided to go for WatchGuard Firebox.

Compared to Sangfor, I think one of the advantages of WatchGuard Fire is the VPN solution, which includes a certain number of licenses in the package. There is no requirement to purchase more VPN licenses. The con is that Firebox is a part of the existing solution provided by WatchGuard.

When it comes to the product's initial setup phase, our vendors support us, so they handle the setup process. We don't have many issues or problems during procurement or setting up all the configurations for WatchGuard Firebox.

The solution is deployed on the hybrid cloud model.

Last time, we got the tool ready within three days. After we provided all the information that the vendors required regarding the setup and configuration settings that we needed, they set it up within three days. A third party also provides the tool's maintenance services.

From the budgetary perspective, I believe the proposed price for WatchGuard Firebox was certainly much better than the other model that had been promoted to us before because the concerned department in our company procured the tool. I don't have any specific information on it.

I am not sure about the tool's price as the commercial part is under a different department. I think the tool is quite competitive compared to the other brands.

The tool's most effective for managing threats revolves around the area of the reporting services it offers, which is cloud-based reporting, so we can get a lot of information from the services.

I don't have much experience with other models, so I can't speak about WatchGuard Firebox's security. The good thing is that because it is easier to handle, and the company that supports us provides us with a lot of information, it is easier for us to operate the product.

WatchGuard Firebox VPN features significantly enhance operations, making it easier during COVID-19, when many people work from home. There are very good features, I recall, whereby you can access office resources without requiring employees to come to the office. The tool did help us a lot during COVID-19.

Our company has a data leakage prevention solution for our email. It is quite intuitive, but it's not WatchGuard Firebox.

Whether I would recommend the product or not is something that depends since I work in a small company where the income is not too much. Other companies of similar sizes might find some similarities with our organization, so I can recommend WatchGuard Firebox to such users or businesses. Bigger or corporate users who have much more requirement settings or a large number of users should look for a different brand that can support the large numbers.

I rate the overall tool an eight out of ten.

We use the solution to ensure that no data breach, such as credit card details and national insurance numbers, leaves the company. However, we have to allow some information to go through because we send a lot of information to the National Healthcare Service.

If we don't want specific data sent out, the tool will stop that data based on the policy we have allocated to it. It has reduced the risks of sending data where it shouldn't be. I haven't faced any issues with the tool's integration capabilities. 

WatchGuard Data Loss Prevention needs to improve its support. 

I have been working with the product for eight to nine years. 

I haven't had any issues with the tool's stability, so I rate it a ten out of ten. 

I rate the product's scalability a ten out of ten. My company has 380 users who use it daily. 

The tool's support is responsive and very helpful. 

Positive

I chose the tool because it was easy to use and implement. I haven't faced any security breaches since implementing it. 

WatchGuard Data Loss Prevention's deployment is simple. You can complete the policies you want to run in a few hours. Once it's been set up, we only need to analyze it every now and then to ensure it's still functioning as intended.

WatchGuard Data Loss Prevention's pricing is expensive. I rate it a seven out of ten. 

I would recommend the solution to others. It's effective because it stops data from being sent out easily once set up. I rate the overall product a nine out of ten.

The solution is used when you want to handle policies with the file. There are different ways you can use it, like in the firewall rules and in proxy rules, and to secure emails. The tool was used very much when there were emails with other set files, and then it would all be checked in the firewall.

It is a basic tool tool, and it does very well for what it is supposed to do. It does simple checks against signatures. I think it is very much what it needs to be, and it is a basic tool that you just use.

There were a little bit of problems with the tool's updates, making it an area where improvements are needed. Sometimes, the firewalls did not get updated in the databases.

I have been using WatchGuard Gateway AntiVirus for over ten years.

The tool is so simple to use. Stability-wise, I rate the solution a nine out of ten.

The scalability depends on how many firewalls you have, and you can put every firewall in it which takes part in the gateway on device checking. Scalability-wise, I rate the solution a ten out of ten.

In my company, there are around 50 people who use the tool. My company also has sister concerns and head offices using the tool. I know that sister concerns are using the same WatchGuard devices as the main company.

I don't think I need any technical support from the website, as it is a basic product. You just plug it in where you need it and then use it. I went through some basic training, and after that, I don't think I ever had to ask someone something. You just put it on and make sure that it can connect to the outlet server.

I know about a lot of different tools, but I have been working with WatchGuard for almost all of my career, as it offers services with which you just connect to the ISPs and firewalls, after which you can put the settings on, but for most of my career, I have been working with WatchGuard.

During the product's installation phase, you just put the tool in the right place, and it works.

The solution is deployed on an on-premises model.

The solution can be deployed in a couple of minutes. The installation process is so basic that I don't even remember what you need to do. You just put the tick marks in the tool and ask the tool to use them. In the rules, where you see the files go through is where you can think over what to do with the files. With the tool, you just need to put it on, and then the default rules make sure that there is some indication that something is wrong.

My company manages everything associated with the tool by myself. I was also involved in the tool's maintenance. As a small team, we all can do it.

Every pair has a license, especially for commercial products. For what we use, the tool's price has been reasonable, but it is not the cheapest. The tool has been quite reasonable.

The tool's cost includes various things, like licenses and support. If you buy basic licenses for the device, everything is included, making it easy to use. If one is very expensive and ten is absolutely cheap, then I rate the tool's price as a six.

It is the basic starting tool. We used different tools in the company. In our gateway, we used WatchGuard because we used WatchGuard's firewalls. It was very easy to set it up. It was used so that if there was anything you needed, you could just use the tool, and then we had different tools for workstations.

The tool is a basic product. You usually start with it, and you make sure that everything goes through your devices. If there is a possibility to check the file that is going through your firewall, you do it. If you catch something, then it is very good, and it is much easier to do when no user has access to it. You just need to use the tool at the start, as it makes the end part easier to manage. It doesn't distract your attention from other tasks. It just works, and you don't need to distract yourself.

If users are downloading something from somewhere, the tool makes sure that the easy issues don't get through. Everything else can work a little less because it takes the easy issues out, so it is the backbone for doing the checks. When it can do its checks and block the infected files, it does it very well and easily. When there are different cases where it cannot act as an antivirus gateway that cannot touch files, then you may need different tools, especially if you don't use WatchGuard products for your emails, so you will need to have something on the email side of things. If you are using web emails and trying to transfer them through your firewalls, then it checks the files and says what is not good.

There are bad elements trying to find different ways to get the files through, and they already know their bad deeds very well. They are finding ways to pass your checks and basic things, and so they are always training their people to find better tools to help them in their job to find what needs to be accessed, making it the biggest challenge for the tool to overcome. The tool is good at the start, but it is not so good until the end. You need to be vigilant about changes. I think what is needed is that one gets a view of his or her network so that you know what is happening in your network. Antivirus and firewall products can be a part of our network, and they provide logs so you can see the logs and what is happening in your network. Providing the big picture of your network is what I think we need to do a little bit of a job now.

I have not used the tool's AI features. Someday, I may use it.

It is a very good product for how it works and does its job, but it is not an all-inclusive solution. It does its job very well, and it is quite easy to put to use. You need to get different views of what is happening in your network and what is coming into your network. Suppose the network traffic is going to interrupt it. If you don't go to the SSE proxy settings or you aren't allowed to do it also, then it cannot take all the traffic. If there are possibilities for the traffic to go through, or it cannot check-in, then we need to understand that all the products cannot do it all.

I rate the tool an eight out of ten.

I have used WatchGuard Firebox for firewall testing purposes and setting up a couple of new projects for my company. I test the solution's efficiency in blocking IPs, role management and policy optimization. 

The product can be configured very easily. The license model of WatchGuard Firebox is also simple and transparent. A purchaser can effortlessly obtain the required features through the license system. 

WatchGuard Firebox offers a satisfying VM and hardware. The performance of the solution differs when it's deployed as a VM and a physical appliance. 

All basic firewall-based tasks, such as creating a policy or role, can be effortlessly implemented using WatchGuard Firebox. The user interface is simple and intuitive, allowing even a beginner to complete tasks without difficulty. 

It's very difficult to find a reseller of WatchGuard Firebox to purchase a license. The number of resellers for the solution should be increased through partnerships. The solution's network observability should be improved. The observance adaptability of different WatchGuard devices is minimal and it should be improved. The information or guidance provided by the vendor for using APIs, syslogs and exports should be enhanced. 

I have been using WatchGuard Firebox for eight years. 

I would rate the stability an eight out of ten. It's a fairly stable product. 

I would rate the scalability a seven out of ten. In our company, when we perform some load tests on one interface, there is a requirement for multiple packet drops at times, which the firewall might not be able to handle, and the other interfaces might go down as well.

There are some performance issues in WatchGuard Firebox when the load is high, but within limits the solution works perfectly. There are seven users of WatchGuard Firebox in our organization for the network administrator cycle. The solution is used daily in our company. There are no plans to increase the usage of the product any time soon in our organization as it is being used only for testing purposes. 

The solution has a seamless initial setup process. I would rate the initial setup a nine out of ten. All the deployment aspects of WatchGuard Firebox are straightforward, and all basic features are available, but for advanced features, many professionals might prefer other solutions over WatchGuard Firebox.

The deployment process of the solution took about an hour in our company, it was a step-by-step configuration process but there were some issues with the VM otherwise it would have taken much less time. One professional is enough to deploy WatchGuard Firebox. For maintenance of WatchGuard Firebox only one person is required and multiple professionals monitors the solution in rotational shifts. 

The solution was implemented completely in-house. 

I would rate the pricing as four out of ten. It's an affordable tool. The basic product license costs our company ₹400,000 per year. In our organization, we don't purchase any security add-ons with WatchGuard Firebox. 

I am part of the research and development team, so I parallelly use competitor solutions from vendors like Palo Alto, Sophos and Check Point. 

Our company professionals claim that WatchGuard Firebox is competent with other firewall solutions in the market. For security purposes, our organization mostly relies on proxy software and other application firewalls.

Our company is majorly concerned with the application firewall and not the network security; this is why we choose application firewalls like WatchGuard Firebox, which can be used both as a VM and physical appliance. In our organization, we use the solution not only for testing purposes but also for data centers. 

I would rate the product's performance and reliability for the remote workforce an eight out of ten. When I setup a data center and keep the solution as an entry point, then later on when I access it through a VPN, it will be flawless. It's very easy to configure a VPN using WatchGuard Firebox. The solution will showcase stability and easy accessibility even in remote functions.

For small and medium-scale networks, WatchGuard Firebox will be an ideal and cost-effective solution. I would rate the solution as eight out of ten. I would surely recommend the solution to others. 

We have all kinds of customers, including schools, colleges, institutes, and organizations. We do not work in a specific area, and we have a wide range of customers in various sectors.

The Firebox offers valuable features such as network security, URL filtering, UTM features, intrusion prevention and detection, and authentication. It also supports VPN, IPsec, and point-to-point communication. I did not encounter any problems after configuring threat detection and protection, intrusion prevention systems, and intrusion detection systems.

The only problem I have with Firebox is the grouping issue. When implementing a rule using a group of IPs, it is not possible to do that directly. I have to manually add all the IPs, and this is where I think WatchGuard should improve.

I have been using this solution since 2016.

The support system is similar to EPDR and EPP. They will register my case and either call me back, email me, or send me an article or key bulletin if things are sorted out. 

Otherwise, they will take a remote session to resolve the issue. They have a centralized portal where I can get support for EPP and EPDR.

Neutral

Setting up Firebox is not an easy task for everyone. To set up Firebox, one should have at least professional knowledge. Not everyone can do a Firebox setup because it is executed based on protocols. 

One cannot simply pick up Firebox and go through a basic configuration. For Firebox setup, having knowledge equivalent to Cisco CCNA associate level plus professional level is essential. 

Additionally, understanding basic routing and switching is necessary. Having knowledge of IPs and professional skills is crucial. Unlike Sophos, which is easy with a 'next' approach, configuring Firebox requires deep knowledge about protocols and how they work.

My only issue with Firebox is the grouping issue. I recommend Firebox since this device will not let anyone down. If someone drives a Volkswagen, they may find it challenging to switch to another car. It is the same with WatchGuard; once someone adopts this device, they will likely not buy another.  

I rate the overall solution a nine out of ten.

WatchGuard is easy to implement and inexpensive. When we get a bulk-off license, we get a very discounted price that is competitive with alternative or competitor solutions.

We can manage multiple sites within one console through the cloud.

Since WatchGuard acquired Panda, there may be synergies in consolidating both solutions under a single name to reduce customer confusion. Additionally, WatchGuard must address the issue of commercial licenses available at very low prices online, creating conflicts and challenges during sales to end users.

I have been using WatchGuard Gateway AntiVirus for five years. We are the distributor of WatchGuard in Egypt and Saudi Arabia.

It's stable. It does not cause any system crashes. Upgrading and updating are very easy and straightforward.

I rate the solution’s stability a nine out of ten.

The scalability is high because we can add additional workstations or endpoints. It's very easy to add to the management console.

It is for all solutions because it will depend on the number of licenses. If it is an enterprise, the cost will be low as it depends on the number of licenses.

We have some issues with technical support. They provide low responses.

Neutral

It is easy to implement and configure. It depends on the number of workstations that we will install. If we are going for one machine, it will not take more than ten to fifteen minutes.

I rate the initial setup an eight out of ten, where one is difficult, and ten is easy.

The price is acceptable compared to competitors. It is the lowest price of all cybersecurity solutions.

I rate the product’s pricing a six out of ten, where one is cheap, and ten is expensive.

The endpoint itself is an agent. It is implemented on-prem, but the management can be done on-prem or in the cloud.

We recommend the solution.  Overall, I rate the solution an eight out of ten.

WatchGuard Firebox serves as the main firewall for customers' premises and data centers, a VPN server and a site-to-site VPN server. It is utilized for web filtering, and we have also deployed XDR solutions on it.

Cloud integration is one of the best features.

I have been using WatchGuard Firebox as a partner for eight years.

I rate the solution’s stability a ten out of ten.

We've deployed for companies with over one thousand people. Firebox is scalable. For instance, it supports high availability with a primary and secondary box configuration. You can purchase a high-availability device to enhance reliability. Additionally, if you need to expand, you can upgrade the device by paying for the upgrade, and they'll provide you with a more powerful unit.

The technical support is awesome. We are a scalable partner with them. Whenever we need expert assistance from WatchGuard, a whole team is connected with us, helping us when things get difficult. You have to work hand in hand with them.

Positive

The initial setup is straightforward. You can deploy it on-premises or using the cloud. If you configure the device to connect to the cloud, you can deploy the Firebox based on templates. You can add a template for a specific client and deploy it for a particular use case. For example, if you're setting it up for a restaurant or a cafe, you can have templates tailored for those businesses. This significantly reduces deployment time, especially if you have several customers of the same type of business.

One person is enough for the solution's deployment, but it will run in less than an hour.

A network security engineer meets with clients to gather configuration requirements. He prepares a configuration template before the implementation. When he arrives at the site, he turns on the device, applies the template, tests everything, and then migrates the settings from the existing router or firewall to the Firebox.

The price is reasonable. It's a powerhouse. The device is stable and fast. Its software is excellent for deployment. It outperforms its stated capabilities. I haven't had any malfunction or damage in eight years due to power outages or similar issues.

With WatchGuard Firebox, we have deployed IP as part of our security measures. Thanks to the additional layer of protection provided by the IPS, our clients and networks are more secure. Additionally, we benefit from a gateway antivirus and an intelligent antivirus that employs AI for enhanced protection. This intelligent antivirus scans all files and information flowing through the gateway.

WatchGuard Firebox's threat detection and response capabilities are highly effective and fast. We've witnessed its efficiency firsthand during various events, such as DNS service attacks. It swiftly halts the attack and notifies you of the details promptly.

The notification time usually doesn't take long, maybe around five minutes after the event.

We have two shifts of engineers monitoring our NOC. They look at the devices, check alerts, and can take action based on the alerts received. We have one expert for tier one and another for tier two.

You can have a powerhouse in a box with the best price on the market. WatchGuard Firebox offers the best price. We work with Cisco and other brands, but their firewall and UTM solution has the best price in the market.

If you deploy a UTM, you deploy Firebox. For example, if you deploy another solution for EDR, you’re going to have two separate EDR solutions. You’re going to have a UTM disconnected from whatever you use from another brand. What ends up happening is that when you purchase all the security solutions from WatchGuard, you’re going to have all solutions combined in a single pane of glass. The learning curve and investment you make will be solid, with one solution that is easy to use, understandable, reasonably priced, and highly effective in security.

Overall, I rate the solution a ten out of ten.