"Best protection at value for money"

What do you like best about Check Point SandBlast Network?

Non intrusive advanced threat protection (including 0 day threats) with a high detection and low false positives

What do you dislike about Check Point SandBlast Network?

Initial configuration is not straight forward if you don't have experience in checkpoint products. There is a best practices guide but not easy to find.

Recommendations to others considering Check Point SandBlast Network:

It's important to take care about the future easy of admin/use and against other more intrusive software Show More

---

"solid and reliable solution"

What do you like best about Check Point SandBlast Network?

Sandblast network can be used in a private network or in the cloud with the same features. There are several companies that do not have this option available. As the current trend is the cloud, on-premise solutions lack many features. For the cloud usage called TX is very easy to activate within several clicks, then it's working. Licensing is simple. TE gives you broad coverage for 0 days of several protocols. Threat extraction is unique; even some vendors have dedicated solutions for the extraction of pds and macros. TEX does not damage the original files. MacOS support is a big plus as MacOS support of related security services is lacking, MacOS TE support gives us confidence. I do not need to invest in an additional sandboxing product with TX. I have one platform to cover all network security solutions.

What do you dislike about Check Point SandBlast Network?

TX annual pricing is costly compared to the initial investment of the product. In case of problems related to TX, support always directs it to the latest HFA, even to the new version. I see in some cases, the TE process hangs and needs to be restarted. You don't get regular updates if the ATP vectors are covered with TX. There's no specific service to use the sandblast networking in the cloud just for info exchange or api. I can't track or query our uploaded data to the cloud.

Recommendations to others considering Check Point SandBlast Network:

You need to open SSL inspection on the gateway. Otherwise, there's no meaning to use Sadblast networking. Achieve files should be analyzed in the SandBlast. Sizing should be done properly before deployment. Purchase the TX with 3-year subscription; 1-year initial purchase than the consecutive years is costly. Show More

---

"Defense against zero day attacks"

What do you like best about Check Point SandBlast Network?

Checkpoint Sandblast combines evasion resistance Threat Emulation, and Threat Extraction technology which detects and blocks Zero-day attacks, including CPU level. Emulation is nothing but to detect signature which was previously unknown into checkpoint's virtual server environment knows as traditional sandbox technology, but its beyond that which makes more accurate and fastest response service. Threat extraction is to sanitized the emails and downloaded file content from web browsers which leads to avoiding phishing emails.

What do you dislike about Check Point SandBlast Network?

The onboarding process is simple but requires more CPU as emulation is a very CPU-intensive process, either on the cloud or on-premises. Filtering real-time web browser traffic and emails that require more memory and devices sometimes stop responding to it. Email gets stuck in quarantine which sometimes needs to involve the TAC team.

Recommendations to others considering Check Point SandBlast Network:

It improves organization security by protecting against zero-day attacks. NGFW solution doesn't come with Threat Emulation and Extraction blades, so always go for NGTX appliances and licenses. Emulation always takes place via secured communication between Checkpoint Threat Cloud and gateways. Onboarding process or 1st-time installation wizards gives easy installation, and default policies get applied. Show More

---