WatchGuard Firebox Peak X5500e firewall
WatchGuard Firebox: Fiery performer at a nice price
- Client/server-based management system allows true offline editing of configuration, high throughput even when handling attacks, can turn on additional in-the-box features through licensing
- Blocked only a third of the attacks in our test, complex user interface, desperately needs wizards for common setup tasks (public server, VPN), must be online for initial setup, to download updates and user interface
WatchGuard Firebox Peak X5500e isn't easy to set up, but its use of XML configuration files works wonders for managing configuration across any number of devices and locations. Apart from complex initial configuration, this is a highly manageable, enterprise-grade, proxy-based firewall with impressive throughput, granular control, and an excellent price.
Price$ 5,990.00 (AUD)
Best Deals (Selling at 3 stores)
Though the Firebox proved faster than the SonicWall when under attack, its ability to turn away those attacks paled in comparison. The Firebox blocked only 33 percent of the malware we threw at it, while the SonicWall notched a 96 percent success rate. Like the other UTMs in our test, the Firebox does not provide a significant level of protection against vulnerability-based exploits.
However, the Firebox certainly provides a level of protection greater than its 33 percent success rate would indicate. In order to run our Web, FTP, and e-mail vulnerability exploits, we had to loosen up the Firebox's firewall rules and allow ICMP traffic. In other words, we had to run the Firebox in a way that WatchGuard does not recommend. The result was that the box was exposed to more attacks than if we had followed the vendor's best practices. If we had run the Firebox with tighter rules, would it have blocked as many of the exploits as the SonicWall? Our gut tells us no, but it would have been a better horse race.
Our short take on the WatchGuard Firebox? It forces you to adopt procedures that should be part of your best practices anyway. If you want something that will slide into a network and let traffic flow until you get all your firewall rules figured out, you'll be completely frustrated by the Firebox. If you want to deploy a secure system in a secure way, though, WatchGuard has provided a box that will work with you to make (and keep) your network safe. It's a strong and granular firewall that offers a lot of control. Just keep in mind that the success of its UTM function is highly dependent on using its firewall features to tightly lock down the types of traffic that are allowed to pass.
Base price: US$5,990. Price as tested: $9,299 including Gateway AV/IPS, WebBlocker URL filtering, and spamBlocker anti-spam.
Join the Good Gear Guide newsletter!
Most Popular Reviews
- 1 2016 Ford Mustang EcoBoost review
- 2 Review: TCL C1 series 4K TV
- 3 Sony 75-inch UHD TV (X9400C) review: Sony and Android are a winning duo
- 4 LG 55EG960T OLED UHD TV
- 5 Panasonic Viera UHD TV review: good hardware, fragmented software
Best Deals on Good Gear Guide
Latest News Articles
- No more passwords with Google's Trust API
- A critical flaw in Symantec antivirus engine puts computers at risk of easy hacking
- Malware attacks on two banks have links with 2014 Sony Pictures hack
- Valve cleverly battles Steam cheaters with two-factor authentication
- New USB-C authentication spec protects against malware and shoddy chargers
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.
For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.
The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.
The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.
My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.
- CCService Desk AnaystNSW
- FTInfrastructure/Solution ArchitectNSW
- CCEngineering Lead - InfrastructureVIC
- CCMaster Scheduler - IT Infrastructure ProgramsNSW
- CCUrgent requirement for a Splunk SMEVIC
- CCIT Technical Writer- understanding in RDMBS,Web server, StorageNSW
- CCSAP BASIS ConsultantVIC
- CCBusiness Analyst- Process Mapping Specialist- Gov / Bank backgdNSW
- CCIT Assistant (Lotus Notes/Technical Support) 160616/ITA/991Asia
- CCContract Analyst Programmer (JAVA/SQL) 160629/AP/793Asia
- FTBusiness Analyst - Clinical SystemsSA
- CCProject Manager - IT SecurityNSW
- FTEnvironments Lead (Linux/ Automation)VIC
- CCContract Analyst Programmer (JAVA/SQL) 160620/AP/623Asia
- CCContract Analyst Programmer (JAVA/J2EE/SQL) 160616/AP/185Asia
- CCSAP Business Analyst - FinanceNSW
- FTSenior Architect, TechnologyNSW
- CCSenior Project Delivery ManagerACT
- FTEnterprise Technology Platform ManagerVIC
- FTTechnical Lead - Tier 1 Customer interfaceACT
- CCBusiness AnalystACT
- CCChange ManagerNSW
- CCSAP Financial Master DataACT
- CCAEM Backend DeveloperVIC
- FTIT Project Coordinator- Data Center Infrastructure backgroundNSW