We performed a comparison between Check Point IPS and Cisco Sourcefire SNORT based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."IPS easily allows follow-up flags on recently updated patterns. If, in rare cases, a false positive does occur, it is quickly detected and an exception can be easily created."
"Some of the features for views and visualization are already predefined as default files."
"Check Point IPS manages risk categories very well and accordingly helps us protect each of our devices in real-time."
"The solution's IPS functionality and firewall functionality are the solution's most valuable features."
"Real-time protection has blocked most threats that could affect system operations."
"IPS logs enable complete visibility and reporting through the smart console."
"IPS can protect our organization with any old vulnerabilities or if any vulnerability detected minutes ago IPS can protect us as per our configured policy."
"IPS signatures can be set quite granularly depending on your environment. You can filter on performance impact, severity, and confidence which makes sizing and adapting easier."
"I like most of Cisco's features, like malware detection and URL filtering."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"The product is inexpensive compared to leading brands such as Palo Alto or Fortinet."
"Cisco technical support is unbeatable. It offers a premium service every time."
"The most valuable feature is the visibility that we have across the virtual environment."
"The solution is rather easy to use."
"The whole solution is very good, and stable."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"There is an issue with precision."
"Sometimes Check Point documentation is not always updated, which is why when some implementations change, it generates confusion about details."
"When exceptions need to be done for certain profiles, it is easy to get them done, however, implementation on some general ones may cause some extra work as the IPS is not easy to overwrite."
"The pain point that I have with this solution is contacting technical support."
"This is an expensive solution, higher than other products on the market."
"Occasionally there are glitches and errors like false positives, which would be a nice area of this solution to improve upon."
"The area with certain shortcomings where improvements are required consist of support availability."
"The hardware-based version of Check Point IPS could be more scalable. Right now, it's not scalable."
"The cloud can be improved."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
"I would like to have analytics included in the suite."
"The main dashboard of Cisco Sourcefire SNORT could improve."
"The solution's approach to managing traffic blocking is confusing and impractical."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"The customization of the rules can be simplified."
Check Point IPS is ranked 3rd in Intrusion Detection and Prevention Software (IDPS) with 46 reviews while Cisco Sourcefire SNORT is ranked 12th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews. Check Point IPS is rated 8.6, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Check Point IPS writes "Great for detection and access with the capabilities of defining specific rules". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". Check Point IPS is most compared with Darktrace, Palo Alto Networks URL Filtering with PAN-DB, Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System and Vectra AI, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Palo Alto Networks Advanced Threat Prevention, Darktrace and Vectra AI. See our Check Point IPS vs. Cisco Sourcefire SNORT report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.