Forcepoint NGFW: Firewall Overview and Analysis

Share it on Twitter  
Share it on Facebook  
Share it on Google+
Share it on Linked in  

See our complete list of top next-generation firewall vendors.
See user reviews for Forcepoint NGFW.

Company Description

Forcepoint was formed in January 2016 as the combination of Raytheon Cyber Products, Websense and Intel Stonesoft. Its mission is to transform cybersecurity by focusing on what matters most: understanding people's intent as they interact with critical data and intellectual property wherever it resides. It is a privately held company.

Product Description

Forcepoint is one of two vendors grouped as Visionaries by Gartner. NGFW connects and protects people and data accessed throughout an organization's offices, branches, and the cloud. Through a single console, Forcepoint NGFW enables security teams to deploy, monitor, and update thousands of firewalls, VPNs and IPSs rapidly, whether in-house or via a managed service provider. It includes high-availability clustering and SD-WAN networking. It works in tandem with the Forcepoint Human Point System spanning user and data protection as well as cloud and access gateway security. A common software core provides unified operation and performance across all forms of appliances – physical, virtual, and cloud.

"There is a growing need for organizations to provide the strongest possible layered defense against the escalating onslaught of advanced malware attacks," said Jim Fulton, Senior Director, Network Security, Forcepoint. "Our next-generation firewall is integrated into the core of Forcepoint and is one of the pillars in the company's Human Point system protecting the intersection of users and data where IP is both most vulnerable and valuable."

Markets and Use Cases

Forcepoint NGFW is used by distributed enterprises and government agencies that need uniform connectivity and protection that spans their data centers and office edges out to their branch locations and cloud environments. For example, retail and financial services organizations deploy Forcepoint NGFW to network their stores, headquarters and cloud-based applications. Forcepoint also helps businesses in many industries move applications and other workloads into cloud, providing protection for Amazon Web Services and Microsoft Azure.


A test rating from NSS Labs showed Forcepoint blocked 99.95% of exploits. It can manage 2,000 firewalls and IPS devices with the ability to update hundreds in minutes.

Security Qualifications

NIST SP 800-171


Forcepoint NGFW uses techniques for analyzing the behavior of anomalous network connections. Next year, it plans to enable its firewall to feed network activity data into the company's user and entity behavior analytics solution, Forcepoint UEBA, for advanced correlation and the ability to provide risk-adaptive protection that varies according to users' actions.


Forcepoint NGFW is available in a range of physical appliances as well as software for virtual and cloud deployments. All can be managed together from a single console.


Forcepoint NGFW supports the optional use of its Endpoint Context Agent which, when installed on a laptop, desktop or server, enables the firewall to control access to the network according to the state of the endpoint (using NAC-like attributes such as whether AV is active) and to whitelist or blacklist specific endpoint applications and versions. This enables Forcepoint NGFW to express business processes such as prohibiting the use of obsolete versions of IE for accessing the network while allowing IE11 or the latest versions of Chrome.


Pricing varies according to the capacity and the capabilities desired, starting at under $1,000 for its small office/home office model.


Loading Comments...