We manage public or private cloud traffic, inspecting for security through various profiles. This includes managing traffic for southeast, east-west, inbound, and A access, applying security profiles to the traffic. I also work with the Check Point Next Generation Firewall and Palo Alto Firewalls.
VM-Series Virtual Next-Generation Firewall (BYOL)
Palo Alto Networks | PAN-OS 11.1.6-h7Linux/Unix, Other 11.1.6-h7 - 64-bit Amazon Machine Image (AMI)
External reviews
105 reviews
from
and
External reviews are not included in the AWS star rating for the product.
User Friendly Application
What do you like best about the product?
It is providing advanced threat protection with deep packet inspection, application based control, and zero-day threat protection through wildfire. it integrates seamlessly with major cloud platforms like AWS, Azure, and google cloud, ensuring consistant security policies across hybrid and multip-cloud environmnets.
What do you dislike about the product?
I don't have anything i dislike. Everythins looks perfect for me.
What problems is the product solving and how is that benefiting you?
It addresses key problems such as inconsistent security across hybrid and multi-clous environments
Advanced threat prevention with visibility and control
What is our primary use case?
What is most valuable?
The most effective features for threat prevention include the threat prevention signature level, the application filter capability, and the visibility provided by the firewalls.
We use these tools to prevent all known and unknown threats using Palo Alto Networks' Wildfire and other data filtering tools to gather information, analyze traffic, manage malicious traffic, and offer visibility, control, and attack prevention.
What needs improvement?
When managing the firewall, it involves a Strata Cloud web browser that requires improvement to enhance deployment ease and call center efficiency.
Additionally, focusing more on enhancing the Stata Cloud Manager would be beneficial.
For how long have I used the solution?
I have used this solution for three years.
What do I think about the stability of the solution?
The solution is very stable and has been in the market for the last 16 weeks.
What do I think about the scalability of the solution?
We are very much satisfied with the tool's scalability.
It rates up to nine out of ten for scalability satisfaction.
How are customer service and support?
The support is quite responsive, but the support quality could be improved. They should focus on enhancing the support provided.
How would you rate customer service and support?
Positive
How was the initial setup?
The setup is easy; I would rate it ten out of ten for ease of setup.
What was our ROI?
Customers can see data within a week, indicating a quick return on investment.
What's my experience with pricing, setup cost, and licensing?
The pricing is at a reach level. I'm not the person who deals with exact pricing details.
What other advice do I have?
I recommend going with the VM series, as it integrates advanced technological standards on a single platform and supports Kubernetes and Docker, which other vendors often don't offer.
I rate the overall solution ten out of ten.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Provides zero-trust security architecture and good integration with other services
What is most valuable?
The most valuable feature of the solution is the zero-trust security architecture.
What needs improvement?
The solution's licensing could be improved, and training should be included before installation.
For how long have I used the solution?
I have been using Palo Alto Networks VM-Series for four years.
What do I think about the stability of the solution?
There are always glitches in every product, but the solution is reliable overall.
I rate the solution a nine out of ten for stability.
What do I think about the scalability of the solution?
I haven’t faced any issues with the solution’s scalability. Our clients for the solution are large corporate or global customers.
How are customer service and support?
The solution’s technical support is very good.
How would you rate customer service and support?
Positive
How was the initial setup?
The solution's initial setup is easy if you have training and know what to do. The solution's deployment time depends a lot on the customer's requirements. It takes around half an hour to install the solution.
What's my experience with pricing, setup cost, and licensing?
The smaller firewalls, like the PA-400 Series, are very good priced. Some of the challenges come with licensing and support on the larger boxes. Sometimes, it's cheaper to buy a new firewall with licensing instead of renewing the licenses of an old firewall.
Suppose you have a PA-3000 Series firewall. By the time of its renewal, Palo Alto will come up with the PA-1400 Series with better performance than the old PA-3000 Series. If the customer had one of the older ones, it would be cheaper for them to buy a new firewall on a lower tier and then get the licenses.
What other advice do I have?
The solution is deployed both on-premises and on the cloud. Palo Alto Networks VM-Series helps in securing our public cloud infrastructure. It is easy to integrate Palo Alto Networks VM-Series with other solutions. We have integrated the solution with Aruba ClearPass Policy Manager. It is easy to maintain the solution.
It is very important for users to get the solution implemented properly in the customer's network.
Overall, I rate the solution ten out of ten.
The best firewall
Robust firewall technology. It's reliable, resourceful, and easy to manage.
After years deploying and managing other brands, I found a great product and I'm happy so have it available for AWS.
Integration in AWS is well documented and easy to follow.
1 person found this helpful
A stable solution that is complex to work with
What is our primary use case?
We use the product on our Azure network firewalls.
What needs improvement?
Palo Alto Networks VM-Series is a complex product to work with.
What do I think about the stability of the solution?
Palo Alto Networks VM-Series is stable.
What do I think about the scalability of the solution?
I rate the solution's scalability a nine out of ten. We have 100 users for the product.
How are customer service and support?
We encountered quality issues over support.
How would you rate customer service and support?
Neutral
How was the initial setup?
The tool's deployment is simple.
What's my experience with pricing, setup cost, and licensing?
Palo Alto Networks VM-Series is an expensive product but the best one in the market.
What other advice do I have?
I rate the product a ten out of ten.
An easy-to-maintain product that provides security and can be smoothly installed within a couple of hours
What is our primary use case?
We use Palo Alto Networks VM-Series for our company's customers, especially those who use Azure Firewall to secure their environment but still want a third-party firewall from companies like Fortinet FortiGate and Palo Alto in their environment. Whenever our company's customers want to opt for a third-party firewall, we suggest firewall products from companies like Fortinet FortiGate and Palo Alto. There have been cases where our company's customer who already uses firewall products from Fortinet FortiGate and Palo Alto deployed on an on-premises model want to shift the same product to the cloud, going on the good experience they have had with the products. If our company's customers are not interested in purchasing a third-party firewall, my company suggests the cloud-native firewall provided by Azure, specifically for their landing zone environment.
What is most valuable?
Regarding Palo Alto, my company normally does a high availability configuration for our customers, which are active-active and active-passive. There are multiple add-on packages a customer can choose from in Palo Alto, including antivirus, web filtering, IDS, and IPS solutions.
What needs improvement?
Considering Azure, some customers may purchase Palo Alto Networks VM-300. Considering the pricing perspective, customers want multiple NIC types because they might have different spokes, and they may like to extend it with different interfaces on different spokes. Considering VM-Series on Azure Virtual Machines, since there is a limitation when it comes to Azure VM-300 as it supports only four cores, there may be some modifications made to support more cores.
For how long have I used the solution?
I have been using Palo Alto Networks VM-Series for three to four years. My company functions as a managed service provider and an integrator for Palo Alto Networks.
What do I think about the stability of the solution?
Palo Alto Networks VM-Series can be made more stable. I have seen some bugs in the solution. After deployment with an API call, you can use an HA solution in two scenarios, namely, as a load balancer and for API calls. I see that in the Palo Alto Networks VM-Series, there are some delays when it comes to an API call configuration.
What do I think about the scalability of the solution?
It is a scalable tool. Considering the licensing part of the solution, it may not seem scalable, especially when you want to move from Palo Alto Networks VM-300 to Palo Alto Networks VM-500 since, for such a procedure, the virtual machines will have to be brought down and registered again with a different license, which is challenging.
My company's customers who use the solution are mostly enterprise-sized businesses.
How are customer service and support?
The solution's technical support has been good. I rate the technical support a seven and a half to eight out of ten.
There are some delays that I have observed when my company communicates with Palo Alto's support engineers. There are also some problems related to the understanding of our company's issues with the product by Palo Alto's support team.
How would you rate customer service and support?
Positive
How was the initial setup?
Users are provided with templates to go ahead with the deployment phase of Azure. There are already prepared templates available for installation, which users can use during installation.
Suppose our company's discussions with the customers are completed, and the design has been frozen. Considering the aforementioned case, the Palo Alto Networks VM-Series installation phase can be completed in a couple of hours, while the only time-consuming task is the creation of policies.
What other advice do I have?
Palo Alto Networks VM-Series is easy to maintain.
From a security point of view, I find Palo Alto Networks VM-Series to be a better product compared to the other solutions in the market.
I rate the overall product a ten out of ten.
Super Sonic nextgen FW
What do you like best about the product?
User friendly GUI along with fast processing of packeta
What do you dislike about the product?
So far not experienced any major issue during operation
What problems is the product solving and how is that benefiting you?
Being a nextgen FW it's eleminiating so many layered devices and providing infra security under one roof
Best virtual firewall product solution
What do you like best about the product?
It is beneficial for our cloud production environment, especially when isolating our DMZ and Core environment.
What do you dislike about the product?
None, as of now. We fully utilize our Palo Alto VM firewall on our environment, especially on our AWS Cloud infrastructure.
What problems is the product solving and how is that benefiting you?
We used Palo Alto VM-Series firewall when securing the connection between our DMZ and Core VPC.
No. #1 Secured solution for VM's
What do you like best about the product?
It's the best and most secure solution for protecting my virtual environment. I, till last month, was using a different product; due to a security breach, we moved to Palo Alto.
What do you dislike about the product?
It has no flaws, so there is no dislike at all.
What problems is the product solving and how is that benefiting you?
It protects the virtual environment; in my case, I have integrated it with my Gateway load balancer on AWS. It is indeed a cost-saver and the most secured solution.
Review of Palo Alto VM-Series: Pros and Cons for Secure Virtualized Environments
What do you like best about the product?
Palo Alto VM-Series apart is its ability to provide advanced security capabilities such as threat prevention, application visibility, and user identification in virtualized environments. Its granular visibility and control over application traffic and the ability to apply security policies consistently across physical and virtual networks are particularly valuable in multi-cloud environments.
What do you dislike about the product?
Cost: The VM-Series can be more expensive than other virtualized firewall solutions, and organizations may need to invest in additional licenses and hardware resources to fully utilize the product's capabilities.
Resource-intensive: Running Palo Alto VM-Series requires significant CPU and memory resources, which may not be available on smaller virtualization hosts or cloud instances. This can result in performance issues and increased infrastructure costs.
Learning curve: As with any advanced security solution, there is a learning curve associated with deploying and managing Palo Alto VM-Series. Administrators will need to familiarize themselves with the product's user interface, policies, and configurations, which can take time and effort.
Vendor lock-in: Because Palo Alto VM-Series is a proprietary solution, organizations may be locked into using it for their virtualized firewall needs. This can limit their flexibility and ability to adopt other security solutions that may be a better fit for their needs.
Limited integrations: While Palo Alto VM-Series integrates well with other Palo Alto Networks products and a variety of third-party solutions, there may be some integrations that are not available or require custom development work
Resource-intensive: Running Palo Alto VM-Series requires significant CPU and memory resources, which may not be available on smaller virtualization hosts or cloud instances. This can result in performance issues and increased infrastructure costs.
Learning curve: As with any advanced security solution, there is a learning curve associated with deploying and managing Palo Alto VM-Series. Administrators will need to familiarize themselves with the product's user interface, policies, and configurations, which can take time and effort.
Vendor lock-in: Because Palo Alto VM-Series is a proprietary solution, organizations may be locked into using it for their virtualized firewall needs. This can limit their flexibility and ability to adopt other security solutions that may be a better fit for their needs.
Limited integrations: While Palo Alto VM-Series integrates well with other Palo Alto Networks products and a variety of third-party solutions, there may be some integrations that are not available or require custom development work
What problems is the product solving and how is that benefiting you?
Advanced Threat Prevention: One of the biggest challenges in securing virtualized environments is detecting and preventing advanced threats, such as malware and zero-day attacks. Palo Alto VM-Series offers advanced threat prevention capabilities, including network-based malware detection, behavioral analysis, and sandboxing, which can help organizations detect and prevent advanced threats before they can cause damage.
Application Visibility and Control: Another challenge in securing virtualized environments is gaining visibility and control over application traffic. Palo Alto VM-Series provides granular visibility and control over application traffic, enabling organizations to create policies that enforce application usage and protect against data exfiltration.
Application Visibility and Control: Another challenge in securing virtualized environments is gaining visibility and control over application traffic. Palo Alto VM-Series provides granular visibility and control over application traffic, enabling organizations to create policies that enforce application usage and protect against data exfiltration.
showing 11 - 20