We use this product to secure our entire network, for ZTNA structure, and for VPN purposes, allowing access to our servers behind the firewall.
VM-Series Next-Generation Firewall Bundle 1 [VM-300]
Palo Alto NetworksExternal reviews
176 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The Best Next Generation Firewall For your Organization: PALO ALTO
What do you like best about the product?
Palo Alto NGFW is the best firewall available in the market, and this product's stability is incredible. It provides complete visibility and control of our traffic and helps to detect and take prevention measures on vulnerable traffic or malicious event. It has many beneficial features for the organization, like DNS security, which provides sub-features like blocking malicious domains and URL filtering. The following fantabulous features are app-id, user-id and single parallel pass processing, which is the best about Palo alto. If we use different Palo alto firewalls, then we can manage them through panorama and do the changes all in one place, so manageability becomes an easy task. The threat signature database is updated regularly. The configuration part is easy and provides excellent throughput and speed despite the high traffic load.
What do you dislike about the product?
The dashboard or management console is very complex and can not be understood by an average L1 engineer. Configuring policies and making VPN tunnels is a big task and takes time. Talking about the cost, it is the most expensive firewall I have seen. The price is high compared to other firewall vendors. The tech support is not so good. Sometime it becomes tough for priority cases to resolve the issue. They launch a new feature release or some service pack now and then and it becomes tough to adapt to these changes as sometimes they contain bugs and are risky to implement in the production network. There is some issue with the VPN feature of Palo Alto. It needs strong expertise and an excellent team to handle this product.
What problems is the product solving and how is that benefiting you?
We can track down the traffic on the interface, and we can also see the bandwidth consumption that is used by the application. This firewall helped our organization to prevent malicious attacks, what user is using which services and what port, and we can block them according to the requirement. Another use case is that it has a sandboxing technique that helps isolate malicious applications and files containing viruses or malware. We can do DNS security, which is our primary focus and provides threat prevention. We can filter out bad traffic and create VPNs for remote users, and the functionality is flexible. If we compare it to other firewalls like FortiGate and SonicWall, it is the best firewall. The web interface can display all the information about our needs.
Good performance, powerful CLI, and offers zero-day signature updates
What is our primary use case?
How has it helped my organization?
Using this product has increased our security and has given us much better results in terms of security scans.
Palo Alto embeds machine learning into the core of the firewall to provide online real-time attack prevention, and I would rate that capability an 8 out of 10. It's definitely effective in terms of securing our network against threats that are able to evolve and morph rapidly.
This solution provides a unified platform that natively integrates all of the security capabilities, although we are not using parts of it. For example, we don't use the configuration tools like Panorama.
What is most valuable?
The most valuable feature is the CLI.
We have the firewall configured for zero-day signatures, which is very important to us. We must be HIPAA and PCI compliant, which means that we need those signatures immediately.
There is no noticeable trade-off between security and network performance. In fact, so far, we've not seen any negative network performance with it. We're very impressed in that regard.
What needs improvement?
The web interface, especially when committing changes, remains a bit slower than I would like, but it has improved over the years. Reboots for the VM series do take longer than I would have expected.
For how long have I used the solution?
I have been working with the Palo Alto Networks VM-Series for almost 5 years.
What do I think about the stability of the solution?
This product is very stable. We have had zero problems with stability.
What do I think about the scalability of the solution?
The scalability is fantastic. We're using the lowest-end product right now, and I don't foresee when we'll have to upgrade. We have a long way where we can continue to scale up.
We currently have multiple people that use it for VPN purposes, to access our servers behind the firewall. It is not used nearly as extensively as it should be. However, in the future we will start flowing all of our internet traffic through it.
We're all working remotely, and we're going to be connecting through the firewall. This means that our traffic is going to greatly increase, meaning that our usage will also increase. We'll also be using many more of the features.
How are customer service and support?
The technical support from Palo Alto is good, overall. However, their response times could be a little quicker.
We have not really had any big complaints with the technical support and I would rate them a seven out of ten.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
Prior to using Palo Alto, we were using an on-premises solution by Juniper. When we switched from onsite to the cloud, we changed products.
We made the switch because Juniper became unbearable regarding complexity and performance. It was getting very bad; we couldn't manage it well, and the performance was quite poor.
How was the initial setup?
The initial setup can be quite complex. There is a steep learning curve and we failed at it a few times before we were able to put a production machine into place.
Our final deployment took between three and four hours.
What about the implementation team?
Our in-house team was responsible for the deployment.
What was our ROI?
We have absolutely seen a return on our investment. We are definitely more secure. With the features that are in Palo Alto, we do not have to worry about people busting into our network. Even just out of the box, with the base features, it's very solid. The default configurations are quite secure.
Our return on investment comes from the fact that no longer need to spend hours monitoring our network the way we did before. We've saved man hours and we've saved stress. I am unable put a monetary value to that, but that would be the return.
What's my experience with pricing, setup cost, and licensing?
This is not the cheapest firewall but it's not the most expensive of the options on the market.
The new licensing structure is a little difficult to understand at first, but with the right thought put into it, would like save some money.
Which other solutions did I evaluate?
Beyond Palo Alto, we evaluated two or three other products. Two of them that I can recall are Fortinet and the Microsoft Azure Firewall.
We did some extensive reviews and some extensive testing and what we found is that for the price, Palo Alto gave us the best options. It had the best set of security features. It wasn't the cheapest product but it was the best solution that fit our requirements.
What other advice do I have?
We have not yet implemented the DNS security features but we will in the future.
If one of my colleagues at another company were to say that they were just looking for the cheapest and fastest firewall, I would suggest that they be careful. Palo Alto has a great balance. It's not super expensive compared to other options on the market, and it's quite quick when it comes to throughput and performance.
In summary, this is a good product but I do suggest that people shop around a little bit.
I would rate this solution an eight out of ten.
THE BEST NEXT GENERATION FIREWALL
What do you like best about the product?
It is one the best network security tool which orovides all round protection to your network and endpoints. This is easy to deploy and manage providing software and hardware together which are all developed all by PA. Having different plane for control and management is very helpful.
What do you dislike about the product?
1. It is more on the expensive side if you compare with other firewall solutions.
2. Buying license for different usecase is also an expense.
3. Log analysis and review is not really user friendly.
2. Buying license for different usecase is also an expense.
3. Log analysis and review is not really user friendly.
What problems is the product solving and how is that benefiting you?
1. This enables us to cover all the network and endpoints which is really helpful in avoiding all the types of vulnerabilities.
2. Managing vpn is also amazing and managing client networks as well.
2. Managing vpn is also amazing and managing client networks as well.
Recommendations to others considering the product:
Go for it if you have kind of bank balance required.
Palo Alto, Reliable High Performance Firewall Solution!
What do you like best about the product?
Palo Alto is a solution that provides software and hardware as a complete setup. The other vendors could be deployed as an open server. I mainly consider Palo Alto like iPhone which develops it's own software; iOS and produces the hardware as iPhone. Also, I consider the other rival vendors like Android as an OS and this OS is capable to work with Samsung, Google, Sony, Xiaomi, Oppo, etc. hardware.
What do you dislike about the product?
The zone limitations give me a headache always. And also log screen and log searching syntax are very complicated and not user-friendly. This interface needs to be revised by a UX Designer
What problems is the product solving and how is that benefiting you?
Palo Alto is one of the leaders in Next-Generation Firewall solutions. We can do App-ID, Content-ID, and User-ID based on Application Control. Also, we can manage security policies and NAT policies which are based on Access Control or port control. Site to site VPN works well without any problem but is hard to configure on the Dashboard; you can add the definitions as objects and use them in VPN policies
Recommendations to others considering the product:
Sizing is important before deploy. Initial setup is supposed to be done by an experienced expert.
Palo Alto review
What do you like best about the product?
The end-to-end security solutions using the product Palo alto can provide security features for layer three to layer seven. One box solutions for all the security issues.
What do you dislike about the product?
Sometimes this device is over-intelligent and creates policies by blocking genuine traffic, which causes production impact. The development team needs to review these issues.
What problems is the product solving and how is that benefiting you?
the device was helping me identify dangerous operating systems and files; with one-click options, we mitigate these kinds of attacks and product the IT infrastructure
Solid NGFW Solution
What do you like best about the product?
Reliable and stable NGFW solution, with good features
What do you dislike about the product?
Management integration isn't as complete and seamless as some other solutions
What problems is the product solving and how is that benefiting you?
Various different use cases for clients as I work for a systems integrator. They have realised many different benefits, including consolidation of services, greater granularity of inspection at the edge and in the data centre, etc.
Enterprise Security Platform For Next Generation.
What do you like best about the product?
It has IPading Engine with SP3 (Single Pass Parallel Processing) Architecure.Paloalto having High CPU,Memmory Utilziation Capability Therefore Performance is very good.
What do you dislike about the product?
Cost is higher than the other firewalls; sometimes, Some Simple Configuration needs to follow Complicated steps.
What problems is the product solving and how is that benefiting you?
In our organization, we use the products for Security and NAT policy configuration to block Unwanted Trffic. Create Different zones in our Network, Such as Trusted, Untrusted, DMZ.
Powerful firewall that continues to lead the industry
What do you like best about the product?
Palo Alto is a well-known and reputable company that is forward-thinking, offering new enhancements and capabilities to defend against the latest threats.
What do you dislike about the product?
Palo Alto firewalls require a fairly substantial investment in terms of cost both up front and annually
What problems is the product solving and how is that benefiting you?
Palo Alto firewalls have addressed multiple requirements including network-based threat/malware detection and prevention, perimeter defense, content filtering, and network segmentation.
Rock Solid Firwall Platform
What do you like best about the product?
It is one of the most fully-featured and well-supported layer 7 firewalls on the market.
What do you dislike about the product?
The user interface is still somewhat less intuitive than I would like. A moderate learning curve.
What problems is the product solving and how is that benefiting you?
Replaced and consolidated out-dated firewall technology, URL filter appliances, and IDS sensors. We did find PaloAlto to be surprisingly willing to negotiate and acquired firewalls at a very competitive price. This came as a pleasant surprise.
Great features and performance
What do you like best about the product?
1. Dedicated management interface for managing and initial configuration of the device.
2. Regular threat signatures and updates.
3. We can import addresses and URL objects from the external server.
4. We can configure and manage with REST API integration.
5. Great throughput and connection speed is fair even in high traffic load.
6. Deep visibility into the network activity through Application and Command Control.
2. Regular threat signatures and updates.
3. We can import addresses and URL objects from the external server.
4. We can configure and manage with REST API integration.
5. Great throughput and connection speed is fair even in high traffic load.
6. Deep visibility into the network activity through Application and Command Control.
What do you dislike about the product?
1. Committing the configuration takes more time.
2. When CPU is 100 percent, then GUI takes very long to respond.
3. Booting time is very long.
2. When CPU is 100 percent, then GUI takes very long to respond.
3. Booting time is very long.
What problems is the product solving and how is that benefiting you?
1. Enforcing web filtering and application control policies to reduce bandwidth usage.
2. Remote access of the internal servers by connecting to the Global Protect VPN.
3. Taking monthly security reports and usage reports.
4. Using WAN interfaces equally using SDWAN plugin.
5. Restricting communication between LAN and DMZ zones and allowing connection only for selected users.
2. Remote access of the internal servers by connecting to the Global Protect VPN.
3. Taking monthly security reports and usage reports.
4. Using WAN interfaces equally using SDWAN plugin.
5. Restricting communication between LAN and DMZ zones and allowing connection only for selected users.
Recommendations to others considering the product:
It is an excellent product, and there are a lot of security features to implement.
showing 151 - 160