WatchGuard XCS-770 review

WatchGuard makes a big play for the web and message content security market with its new XCS appliance family. In this review we see how the mid-range XCS-770 stands up.

The policy creation page presents four main headings for anti-spam and anti-virus, content control, email and web traffic. URL filtering comes under the HTTP heading and offers 54 categories to block, allow or leave undefined.

Anti-virus and anti-spyware measures are handled efficiently by Kaspersky which allows you log, reject or quarantine suspect email or web downloads and send notifications to administrators and users. A valuable feature is HTTPS scanning is included as standard and you can allow or deny this traffic at any policy level.

For the best anti-spam performance, the appliance likes to learn about what is acceptable. We used the quickest method by importing a live Outlook inbox from the web interface. Annoyingly, the appliance only supports the mbox format so we had to use Mozilla's Thunderbird to convert the PST file before we could use it.

We then left the appliance filtering live email for a week and saw some impressive results. Overall effectiveness was very good with the appliance scoring a 99.5 per cent success rate. Three spam scores are used to place suspect messages in Definite, Probable and Maybe categories and we saw no false positives with the first two scores.

However, the Maybe score threshold will almost certainly have to be increased as on the default setting we recorded a 38 per cent false positive rate. It's here that the unintuitive web interface gets in the way as these settings are difficult to find.

Featured Resources

Four cyber security essentials that your board of directors wants to know

The insights to help you deliver what they need

Download now

Data: A resource much too valuable to leave unprotected

Protect your data to protect your company

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

Most Popular

80% of cyber professionals say the Computer Misuse Act is working against them
Security

80% of cyber professionals say the Computer Misuse Act is working against them

20 Nov 2020
Cisco acquires container security startup Banzai Cloud
Security

Cisco acquires container security startup Banzai Cloud

18 Nov 2020
350,000 Spotify users hacked in credential stuffing attack
Security

350,000 Spotify users hacked in credential stuffing attack

24 Nov 2020