WatchGuard Firebox Reviews

We primarily use the solution to secure our networks in branch via SSL and VPN. We also use it for our web pages hosted on our servers. This product handled everything UTM.

The solution has benefitted us by offering a secure connection. We don't spend as much time analyzing when traffic goes somewhere. We have clearance capabilities. We see what happens in our network.

The hardware is quite good.

The solution is fast. When we commit and change items in Firebox. It just works and it is simple. When you drop a connection, it gets dropped in a second. The speed is important to us.

It has everything we need in terms of functionality.

The solution is scalable.

It is stable and reliable. 

Pricing is reasonable. 

The UI and web view aren't nice. The fonts are too small, for example. 

I've been using the solution for three years. 

It is very stable. I haven't seen any issues with it. There are no bugs or glitches. It doesn't crash or freeze. It is reliable. I'd rate it nine out of ten in terms of stability.

The solution can scale quite well. If a company needs to expand, it can. I'd rate the ability to scale at an eight or a nine out of ten. It's easy.

I've never directly reached out to technical support.

When we need to make something really good, we need to take the time to ensure that's the case. However, the configurations are simple.

We had a business help us implement the solution. 

So far, the solution has been worth the cost.

The product isn't necessarily expensive to acquire. The pricing is reasonable. 

There are no extra costs or hidden fees. 

I'd rate the solution nine out of ten. We've been pleased with the product overall. 

The main use case is to avoid zero-trust attacks because, from Application Control, I can only run known applications. Every unknown application is placed on hold or blocked.

Zero-trust and threat-hunting services are most valuable.

It is easy to use, and with the features it has, you feel that you are being protected.

The time they take to classify an application once they find that it is unknown can be better.

I have been using this solution for three years.

It is very stable. I would rate it a nine out of ten in terms of stability.

It is scalable. I would rate it a nine out of ten in terms of scalability.

Their technical support is very good. I would rate them a ten out of ten.

Positive

I would rate it a nine out of ten in terms of the setup. The duration depends on the number of computers. For less than a hundred computers, it can take one or two days. We have one engineer for its deployment and maintenance.

Our clients have seen an ROI. Because of its ease of use, they don't have to invest a lot in human resources to maintain this solution.

Its cost is okay. It is not too expensive, not too low. I would rate it a nine out of ten in terms of pricing.

To those who are planning to use WatchGuard Application Control, I would say that you can use it with confidence.

Overall, I would rate it a nine out of ten. 

My primary use case is for my network security even when I am out of the office.

WatchGuard Firebox has improved our organization one hundred percent from before we started using it.

I have found the DNS Watch feature for intrusion and prevention response and APT Locker most valuable to me.

I would like to see more training become available for us. I would like to see the port conflicts improved.

I have been using WatchGuard Firebox for the past five years.

The stability is good.

There is excellent scalability and we are using it at full capacity.

The initial setup is quite complex and difficult, especially for first-time users. You need to go on the website and study it before you start using the policy manager. Once you start using the policy manager it becomes easier.

We used a third party and the deployment time takes less than ten minutes.

The return on investment is that it saves us a lot of time from intruders creating problems.

The licensing can be a one-time purchase unless you need the extra services for example twenty-four seven support.

I did try pfSense and FortiGate and decided WatchGuard Firebox was what I needed.

I would rate WatchGuard Firebox a nine on a scale of one to ten.

We are WatchGuard partners, and we also use it on our own. We are using it for general firewall purposes and vulnerability management. We are also using some of the additional security stacks such as intrusion detection and so on.

We are one version behind the latest version. We have it on-prem at the moment, but some of our customers have private cloud solutions.

I like intrusion detection the most.

I'm pretty happy with it, but vulnerability management could improve a little bit in comparison to other parts, such as Cisco and so on.

There could also be better reporting. For example, there should be more out-of-the-box management reports. These two improvements would be nice.

I have been using this solution for around 10 to 15 years.

It's stable.

It's scalable, but I haven't compared it with others.

There are five people who are using it from an administrative perspective, but everyone is using WatchGuard because of the VPN.

I haven't interacted with them myself, but my colleagues state that their support line is good.

Its setup is of medium complexity. It's not super easy. Everything is in its right place, but it's not as complicated as other vendors. It's in the middle.

The deployment duration varies. Depending on your needs, it could take a few hours.

It's in the medium range. Its price is pretty good considering the functions and add-ons that are used.

I would advise having a proper look at the features because there are a lot of different versions, scales, and limits on different Fireboxes. You have to decide in advance which one is good for you in terms of performance, future needs, and so on. You shouldn't have too many changes in your landscape. 

I would rate it an eight out of ten.

I found several features valuable in WatchGuard Application Control such as the HTTP Proxy, DNSWatch, VPN, and HTTPS Content Inspection.

What could be improved in WatchGuard Application Control is its price. It could be cheaper. You always want the best price for any solution, but for security products, pricing is usually on the higher side.

I've been using WatchGuard Application Control for five years now.

WatchGuard Application Control is a stable solution.

WatchGuard Application Control is a scalable solution.

Whenever I need support for WatchGuard Application Control, I'm able to get it from the vendor.

The initial setup for WatchGuard Application Control is easy if you understand its UI and features. I would rate its setup as four out of five.

The licensing model for WatchGuard Application Control is based on the number of users. WatchGuard Application Control also has licensing models with several features.

On a scale of one to five, I would rate the price of this solution a five.

The number of users for WatchGuard Application Control is currently five hundred, in several locations, for several clients.

My advice to others looking into using WatchGuard Application Control is that it's a great solution. It has several features, and every year, WatchGuard implements another solution that complements its security functions. WatchGuard Application Control is always improving through the addition of new features.

My rating for WatchGuard Application Control is nine out of ten because it's a good solution for me.

My company is a partner of WatchGuard.

I'm a system administrator and we have a partnership with WatchGuard. 

The solution has a useful traffic monitor. You can check if the packet in the unit works and analyze the proof quickly. It's very easy to use and provides good security. 

We've found that sometimes the solution is not easy to understand and we need to bring in some specialist assistance. 

I've been using this solution for two years. 

The solution is very stable.

We haven't needed to scale so I can't comment on that. 

The support is good but we've had some difficult situations because not everyone in support is good when it comes to specific problems such as VoIP. 

We previously used Cisco but there came a time when we needed to move to a more updated product. 

The solution is difficult to implement without a specialist, especially the first time. It requires an IT technician. It's become easier for us to deploy ourselves now that we've had some experience.

Licensing costs are very reasonable and paid annually. If you need additional options they can be bought separately. 

I mainly use Firebox for SSL, VPN, internet proxy, site-to-site tunnels, and intrusion protection.

Firebox's best feature is the access portal.

Firebox would be improved with integration for endpoint protection solutions.

I've been using Firebox for three years.

Firebox is generally stable, with only some glitches here and there, and its performance is okay.

Firebox is scalable.

WatchGuard's technical support is okay, but they could do more to push knowledge so the customer could solve their own problems.

Neutral

The initial setup was straightforward.

We used an in-house team.

Firebox is priced reasonably.

I would give Firebox a rating of seven out of ten.

Actually, we do not use WatchGuard Firebox, we just sell and sometimes deploy and install it for the customer. We usually set up a few basic policies then give it to them to continue on.

The features that I have found most valuable are the FireWall features. The management side of WatchGuard is quite easy because it supports two ways to manage it - by the web and the other one they call WatchGuard systems manager. I used to be familiar with WSM only, but they improved their GUI in the web browser and now it is much easier to do it within the web browser.

The other feature is the side to side VPN. We have a bank client and they use a WatchGuard device for their headquarters and other WatchGuard devices for their branches. Setting up those IP's and VPN's was quite easy because the relay was at the branch office where the VPN resides. So that was quite handy to set up.

In terms of what could be improved, I would say their web blocker feature. It is still quite a confusing setup, especially when you want to filter out a particular category for granularity. For example, you do not want to filter Facebook but you do want to filter Facebook games only. It can be done, but the process to do it is very confusing.

We have seen other products like Sophos, Checkpoint and Palo Alto that were much easier to set up their web built setting than it is with WatchGuard. So aside from all other features, including the VPN security policies, the only feature that is quite confusing is the web block feature.

They could make the web blocker much easier to set up.

In terms of scalability, they have models like the 5,000 series and 6,000 series. We have not reached that yet. We are only a small company and our customers are only small and medium businesses. So no enterprise companies yet. But I think if we need a bigger box, we would go with the 5,000 series.

Right now we're only at about 200 hundred users. Sometimes we are trying to push for the 300 series or 500 series, but not yet.

We require a staff of one or two for deployment and maintenance.

I think technical support is okay. When I log a case, they usually respond within a day. Then, if they need to do some things for the client, they are quite flexible and do it based on the client's schedule. So no problem with the support. They are good. So far all our issues we have raised, and we have large cases, have been resolved. So their tech support is quite good.

We switched because WatchGuard is cheaper. An old product that we previously sold was quite expensive, especially the security renewal after every year, but WatchGuard offered quite a competitive price and in a bundle that was much easier to understand. Cyberoam, for example, was quite complex to set up under licensing. Cyberoam was bought by Sophos. So we switched to WatchGuard for the price.

The main highlight is price. The client has quite a tight budget so we can offer much more with WatchGuard.

Setup was easy because the manual was there and it was quite easy to connect to a particular port. It's very understandable. Setup was very straightforward, nothing complex.

Deployment could take only a few minutes or up to an hour and we can already set up a few basic policies. But the thing that drags longer is teaching the client to use it and to set up their own security policies. Sometimes they don't have enough experience at setting up WatchGuard, it's still new to them. But maybe after a few hours of lectures from us they get it. We still continue to support them after initial set up, for example if if they want to set up a policy we can assist them with that.

I have seen a return on investment, especially for the client. They have less problems in the bandwidth because the users are not going to unnecessary sites. So productivity should be better. Clients would not be tempted to browse unnecessary sites, games, download movies, because there is a firewall with restrictions in the policies. So therefore, the users would be performing at their best.

The box costs 180,000. One third of the price of the box goes to the yearly renewal fee, around 50 or 60, for the basic. There is the advanced feature which is half of the box, but the basic is quite enough for most of our brand, which is why we have not used the TDR yet.

And the response comes free for the advanced features and advanced licensing.

The advice I would give to anyone considering WatchGuard Firebox is that it is a good product, despite what they say about it not being in the Gartner quadrant leaders. It performs well. It's fast. The only downside would be the web filtering side of things. If the client wants a good web filtering device, they have to go to another vendor, but just for Firewall IP and VPN, I think WatchGuard will be good.

I'm not saying that the web filtering for WatchGuard is really bad, just confusing. Some clients don't want to do something that's confusing for them, they prefer something easy, but if they can live with a little confusion, then it's okay. But it is good to have a good partner, someone like us, in case the client has a problem setting up their policies, especially in the web filtering, we can help.

Speaking on behalf of the client, I think they are okay with the solution. They are still continuing to use it past a year already, and they continue to renew. They are satisfied with its performance and what it is capable of doing.

On a scale of one to ten, I'll give WatchGuard Firebox an eight.