Your Next Generation Firewall?
August 14, 2019

Your Next Generation Firewall?

Nick Erwin | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Forcepoint NGFW

We are using IPS/IDS Firewall, router and SD-WAN capable network security appliance. We currently use the Forcepoint NGFW in our on-premises data center environment, Cloud DR solution, and at all remote locations. We utilize it as a security and routing appliance that can determine the best ISP link to use at any given time or to prioritize types of traffic over specific netlinks.

Pros

  • Easy to manage and make changes on - ACL's are done with ease.
  • Easy USB initial configuration - The easy initial setup of a new location and firewall saves massive time. Settings are automatically pushed to new nodes upon contact with the controller.
  • Low Complexity - This system does not have a lot of complexity requiring extra hours, training, or personnel to manage.

Cons

  • Poor Reporting - It exists but even when calling in to support for assistance, they have no idea how to tackle customizing reports or searching for specific data.
  • Efficiency/Productivity increase. The company moved from Cisco firewall and routing hardware to Forcepoint NGFW. It now takes fewer people and fewer hours to manage the new product. This has allowed the company to put the man-hours to use on other projects and tasks.
  • Long term viability. This has been a concern in the past when the company started as Stonegate, merged to become Stonesoft then got purchased by McAfee, then McAfee got purchased by Intel. However, with Forcepoint the product seems to have found a stable home.
  • Low complexity. The Web GUI based system for management has reduced the cost of personnel and training required. There is no longer a need for the company to have higher trained and higher salary cost employees to manage the system. Mid-level admins at lower salaries are capable of managing the GUI based system with ease.
The Graphical User Interface is very easy to read, understand and work with. The usability of this product is very high.
Support has varied over the history of the company. Terro is a name that comes up often with the best of service from this company.
There are similar hardware and license costs between the two products. The Forcepoint NGFW product is by far easier to use and manage.
If you are looking for a smaller network/security team, the ease and low complexity create an easy to manage environment. One engineer can easily manage 100 nodes/locations. If you are just starting to get security conscious and predict regular adjustments to policy, routing, and access, this is a very good system for making easy to understand and low impact changes on a regular basis without operations interruption.

Forcepoint NGFW Feature Ratings

Identification Technologies
5
Visualization Tools
5
Content Inspection
10
Policy-based Controls
10
Active Directory and LDAP
8
Firewall Management Console
10
Reporting and Logging
8
VPN
9
High Availability
9
Stateful Inspection
7
Proxy Server
Not Rated

Comments

More Reviews of Forcepoint NGFW