Check Point CloudGuard WAF Reviews & Product Details

CloudGuard WAF is an excellent non-cloud choice to keep the applications or website secured without being a security expert. It hides the background or ground level details of application and acts as a barrier layer in front of your site and automatically blocks unauthorized and DDos and others attacks. Review collected by and hosted on G2.com.

Just liek any other software out there Cloudguard does have some complex and rigid configuration policies which i really feel aren't worthy.

Sometimes configuration takes more time than actual benefits. Review collected by and hosted on G2.com.

I greatly appreciate the machine learning engine of Check Point CloudGuard WAF for prevention, because it automates much of the complex work of rule management, drastically reducing false positives. I don't have to write custom rules from scratch and the policies adapt well to real traffic after the initial learning period. Additionally, I like the security policy updates that come from the cloud without me having to intervene manually. The preemptive bot protection is very effective, clearly distinguishing between good and malicious bots, and the automatic API discovery is convenient for mapping APIs and detecting unprotected endpoints. The unified console for policy management across different environments, cloud and on-prem, is very useful to avoid maintaining separate stacks. Review collected by and hosted on G2.com.

The management console could be improved; sometimes you have to click too many times to find specific information, and the logging system is not granular enough during troubleshooting. The documentation lacks concrete examples for real use cases, and more practical troubleshooting support would be helpful. Integration with Splunk requires writing custom parsing, and support for configuration as code has room for improvement. Review collected by and hosted on G2.com.

What really stands out to me is how easy it is to manage across our hybrid environment it doesn’t care if our apps are in AWS, Azure, or on-prem, everything just works. The SSL offloading took a massive load off our backend servers, and the API protection has been rock solid. Honestly, I don’t have to think about WAF configs anymore, and that’s the dream. Review collected by and hosted on G2.com.

The reporting and logging could definitely be more intuitive I usually end up exporting logs just to make sense of them because the built-in tools feel clunky. Also, the dashboard sometimes takes a few extra seconds to load, which is more annoying than it should be for a product at this price point. Minor frustrations, but they add up. Review collected by and hosted on G2.com.

I like Check Point CloudGuard WAF because of its contextual AI that delivers near-zero false positives and automatic zero-day protection. I find it extremely valuable for providing strong automatic protection against zero-day threats with almost no false positives and requiring zero daily tuning effort. Review collected by and hosted on G2.com.

One area that could be improved is the initial learning period for very complex or highly dynamic applications, which sometimes requires a bit more manual exception tuning than I'd prefer in the first few weeks. Also, the initial setup/learning phase for complex apps can be a bit involved, and pricing feels premium, though the low-maintenance protection usually justifies it for serious environments. Review collected by and hosted on G2.com.

I really like the simplicity of deploying Check Point CloudGuard WAF. It is cloud native and integrates well with AWS and Azure, automatically scaling when there is a traffic spike. I appreciate the centralized management that saves me time and the console where I can manage multiple environments from a single interface. The AI engine for threat detection is impressive and reduces the tuning work, learning from legitimate traffic and alerting you to attacks that might go unnoticed with other solutions. Check Point's support has always been quite responsive. Additionally, the updates for signatures and protection rules are automatic, which saves me valuable time. Review collected by and hosted on G2.com.

The thing that annoys me the most is the price. It is not cheap at all, and when I have to propose it to smaller clients, I often struggle to justify the cost compared to cheaper alternatives. The documentation could also be much better. Sometimes you look for how to do a specific thing and end up going around in circles among guides that don't answer your question or are outdated. Another thing that bothers me is that the console is sometimes slow, especially when you have to scroll through heavy logs or generate reports over long periods. The initial tuning of the machine learning requires patience. The first few weeks it generates some false positives until it learns the traffic well, and you have to keep an eye on it to avoid blocking legitimate users. Review collected by and hosted on G2.com.

I like the Check Point CloudGuard WAF's GUI, which is very easy to use. It effectively helps in providing security to applications by allowing and blocking IPs, which is especially useful as we work on zero internet in our project. If we know an IP is part of our internal or external client, we can easily allow that IP. Check Point CloudGuard WAF's security is a key reason why we switched from using Azure Firewall. Review collected by and hosted on G2.com.

I think internal DNS needs to be removed. Also, the initial setup isn't easy, and when we try to resolve any ip it getting resolved but not from given source Review collected by and hosted on G2.com.

It's designed to protect our websites , Api and cloud applications from cyber attacks. This protects our application from being hacked. random heavy traffic does not cause the website to go down. reduces false positives saving time for developers and testing. fully automated setup requires very little manual tuning. very powerful for modern cloud native applications. Review collected by and hosted on G2.com.

It's many users say that its policies and rules are not easy to configure correctly. it's very expensive. technical engineers are not always available and troubleshooting takes time. Review collected by and hosted on G2.com.

What I like most about Checkpoint cloud guard WAF is it combine, AI-Driven protection with simplicity of deployment and low operational burden. The solution is cloud native, scalable, globally distributed and designed for rapid deployment so organization can protect their web assets quickly. Checkpoint Cloud Guard WAF uses contextual AI to defend web apps and APIs from known and zero-day threats, with minimal false positive and no manual tunning. Customer support is very active. Review collected by and hosted on G2.com.

There is no dislike as of now. Product is doing great. Review collected by and hosted on G2.com.

I appreciate the proactive and AI-driven threat prevention offered by Check Point CloudGuard WAF. It effectively detects and blocks threats like SQL injections, remote code execution, and automated bots without the need for traditional signature updates. This advanced AI-driven security extends protection against a wide range of threats, including zero-day exploits and API attacks, all with minimal effort. I find the product’s capability to ensure comprehensive threat coverage with reduced manual intervention to be highly valuable. Additionally, the initial setup process is very easy, which facilitates a smooth adoption and fast deployment. Review collected by and hosted on G2.com.

The steep learning curve is largely due to the sheer number of features and the extensive configuration needed before the system feels truly comfortable to use. With so many profiles, protections, exception paths, and tuning options available, it can be difficult to determine exactly what is necessary from the very beginning. Review collected by and hosted on G2.com.

I love that Check Point CloudGuard WAF protects our web applications and cloud APIs against a wide range of threats, which is crucial in today's digital environment. I especially value its ability to prevent bot attacks, ensuring the secure operation of our applications, in addition to effectively protecting us against scammers. I find that the implementation is quick and simplified, which is a great benefit by minimizing the time and effort needed to get the system up and running. I am also impressed with its multi-platform security that provides solid protection, and the high protection rate it offers highlights its effectiveness. Additionally, the initial configuration of Check Point CloudGuard WAF is very simple and suitable for users of different experience levels, which greatly facilitates the integration process. Review collected by and hosted on G2.com.

Possible bottleneck in the performance of the computer's processor and poor management of configurations. It overloads the computer's CPU a lot despite the hardware's power. Review collected by and hosted on G2.com.