Easy deployment of rules for different environments like Dev/QA etc., easy management from central console; ability to add custom rule in every layer which makes customization easier than other products available out there.
The UI could be improved by adding drag & drop functionality at some places. We can easily deploy our new security policies without any manual process required. For example:- we have implemented multi domain policy along with network segmentation where if one IP address traffic goes outside its respective networks it should not go inside those networks as well.- this helps us when implementing WAF features or blocking DDoS attacks.- Traffic forwarding between two servers via VPN connection was difficult to implement before but now just few steps are enough.