Check Point 4000 Appliances vs. Palo Alto Networks Next-Generation Firewalls - PA Series

Check Point 4000 Appliances

Palo Alto Networks Next-Generation Firewalls - PA Series

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Check Point 4000 Appliances	Score 8.3 out of 10	N/A	Check Point’s 4000-series appliances is a legacy firewall offering. It also provides IPsec VPN access and intrusion prevention within the offering.	N/A
Next-Generation Firewalls - PA Series	Score 9.3 out of 10	N/A	Palo Alto next-generation firewalls classify all traffic, including encrypted and internal traffic, based on application, application function, user and content. Users can create security policies to enable only authorized users to run sanctioned applications.	N/A

Pricing

Check Point 4000 Appliances

Palo Alto Networks Next-Generation Firewalls - PA Series

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
Check Point 4000 Appliances	Next-Generation Firewalls - PA Series
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

—

More Pricing Information

Community Pulse
	Check Point 4000 Appliances	Palo Alto Networks Next-Generation Firewalls - PA Series
Considered Both Products	Check Point 4000 Appliances No answer on this topic	Next-Generation Firewalls - PA Series Binita Kharbanda Shift Supervisor Chose Palo Alto Networks Next-Generation Firewalls - PA Series On other firewalls creating the policy is a bit complex, but with the Palo Alto Next-Generation Firewalls, it can be done with ease as it provides the best user-friendly GUI. It provides complete protection from both signature-based and signature-less attacks both. With its … Incentivized Helpful? Chandan Singh Rathore Senior Technical Consultant Chose Palo Alto Networks Next-Generation Firewalls - PA Series Palo Alto has a user-friendly GUI and it comes with a single console from where you can manage all the policies and routing. It has advanced capabilities to prevent APT (Advanced Persistent Threat) attacks. Cisco Firepower lacks in capabilities with Palo Alto if we compare it. Incentivized Helpful?
Top Pros	Pro Ip address Pro Anti malware Pro Critical data	Pro Url filtering Pro Malware protection Pro Application control
Top Cons	Minus Learning curve Minus Steep learning curve Minus Technical support	Minus Difficult to configure Minus Less documentation Minus Web interface

Features

Check Point 4000 Appliances

Palo Alto Networks Next-Generation Firewalls - PA Series

Firewall

Comparison of Firewall features of Product A and Product B
	Check Point 4000 Appliances 9.1 1 Ratings 7% above category average	Palo Alto Networks Next-Generation Firewalls - PA Series 9.4 21 Ratings 10% above category average
Identification Technologies	9.01 Ratings	9.921 Ratings
Visualization Tools	8.01 Ratings	9.021 Ratings
Content Inspection	9.01 Ratings	9.921 Ratings
Policy-based Controls	9.01 Ratings	10.021 Ratings
Active Directory and LDAP	8.01 Ratings	9.920 Ratings
Firewall Management Console	10.01 Ratings	10.021 Ratings
Reporting and Logging	10.01 Ratings	7.621 Ratings
VPN	10.01 Ratings	8.421 Ratings
High Availability	10.01 Ratings	10.020 Ratings
Stateful Inspection	9.01 Ratings	10.020 Ratings
Proxy Server	8.01 Ratings	8.810 Ratings

Best Alternatives
	Check Point 4000 Appliances	Palo Alto Networks Next-Generation Firewalls - PA Series
Small Businesses	pfSense Score 9.2 out of 10	pfSense Score 9.2 out of 10
Medium-sized Companies	Next-Generation Firewalls - PA Series Score 9.3 out of 10	pfSense Score 9.2 out of 10
Enterprises	Next-Generation Firewalls - PA Series Score 9.3 out of 10	Sophos UTM Score 8.9 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Check Point 4000 Appliances	Palo Alto Networks Next-Generation Firewalls - PA Series
Likelihood to Recommend	10.0 (2 ratings)	9.5 (37 ratings)
Likelihood to Renew	- (0 ratings)	10.0 (1 ratings)
Usability	- (0 ratings)	10.0 (2 ratings)
Support Rating	- (0 ratings)	8.4 (9 ratings)

User Testimonials
	Check Point 4000 Appliances	Palo Alto Networks Next-Generation Firewalls - PA Series
Likelihood to Recommend	Check Point Software Technologies Well suited for small to medium business with less than 1000 users. Good edge device, NAT is easy to work with. The anti-malware, anti-spyware are worthwhile paid add-ons. Anti-spoofing is built in, and required to be put in. The split of management between Gaia and secure platform applications is painful, but nothing that can't be gotten around. Incentivized Verified User Anonymous Read full review	Palo Alto Networks Palo Alto firewall only affords by Large level infrastructure having a budget for Security Prospect. I will recommend it for the Card information industry & Confidential data solutions. Because it provides a bucket of security features that are not easily vulnerable. Incentivized Vinit Sharma Network Administrator Read full review
Pros	Check Point Software Technologies If you have critical data then you can use this firewall for secure your organization You can also use for cloud security If you want the deep packet inspection then this is one of the best firewall for you. Vinit Sharma Network Administrator Read full review	Palo Alto Networks The PA handles VPN connectivity without missing a beat. We have multiple VPN tunnels in use for redundancy to cloud-based services. The PA has great functionality in supporting failover internet connections, again with the ability to have multiple paths out to our cloud-based services. The PA is updated on the regular with various security updates, we are not concerned with the firewall's ability to see what packets are really flowing across the network. Being able to see beyond just IP and port requests lets you know things are locked down better than traditional firewalls. It is a great overall kit, with URL filtering and other services that fill in the gaps between other solutions without breaking the bank. Incentivized Verified User Anonymous Read full review
Cons	Check Point Software Technologies Steep learning curve for admins No packet tracer application like the ASA to test flows prior to putting in new rules, etc. Policy packages are all or nothing. I cannot uninstall or turn off a piece of the overall policy, it's all or nothing. Incentivized Verified User Anonymous Read full review	Palo Alto Networks Our specific model is a bit slow and outdated and takes up to 10 minutes to commit a configuration change. Nested security rules would be helpful instead of a linear approach. But rule creation in general is very simple. Documentation gives a very straight forward answer to some items but is very vague in others. Support could be a little better. An issue we had a tech was insistent it was the "other guy" and it ended up being the very latest PAN OS upgrade. Incentivized Christopher St.Amand Senior Network Security Engineer Read full review
Likelihood to Renew	Check Point Software Technologies No answers on this topic	Palo Alto Networks The PA5220s have far exceeded what we have expected out of them. It was a bit of a learning curve coming from another vendor, but everything falls into place now with ease. The capabilities of the solution still surprise us, allowing us to remove other costly hardware and providing a single point of management needed Incentivized Verified User Anonymous Read full review
Usability	Check Point Software Technologies No answers on this topic	Palo Alto Networks In my opinion, the Palo Alto Firewall is the simplest firewall in terms of management interfaces; though it has more advanced options that apply to more advanced use cases. Configuring basic features on the firewall is nearly self-explanatory; configuring more advanced features can be met with very thorough vendor documentation. Incentivized Verified User Anonymous Read full review
Support Rating	Check Point Software Technologies No answers on this topic	Palo Alto Networks We've run into a couple undocumented bugs, but that seems to happen with every brand and technology. Any time we've had to engage Palo Alto support they've always been professional, knowledgeable and prompt. In almost all cases we've been able to resolve our issues without having to escalate our tickets. Incentivized PL Paul Luchini Network Engineer Read full review
Alternatives Considered	Check Point Software Technologies We were using the Cisco ASA 5525 but this firewall was not fully secure. Lots of advanced features were missing so we installed the Check Point 4000 Appliances and we are really happy with the features, advanced IPS and web filtering help us to protect our organization and also more control our user traffic. Vinit Sharma Network Administrator Read full review	Palo Alto Networks No one can say any other companies in this time is better than Palo Alto Networks Next-Generatoin Firewalls. Palo Alto offers very advanced features which protect you[r] organization. Advanced malware protection, anti spam, lots of other threats. Incentivized Basant Gupta Executive System Admin Read full review
Return on Investment	Check Point Software Technologies We have not seen a zero-day exploit since implementing the anti-spyware, anti-malware, and URL filtering functionality We have not seen a successful intrusion into our systems since the implementation of our checkpoint 4000 We have had this firewall for 5+ years, and it still has much life left in it. Incentivized Verified User Anonymous Read full review	Palo Alto Networks Overall, even though the device is very expensive (both hardware and licensing), the product does produce a decent ROI, given that one (or HA pair) of devices can do so many things, such as anti-virus, anti-malware, URL filtering, SSL decryption, SSL VPN, routing, etc. There will definitely be sticker shock when you're renewal comes up annually (or after 3 years), so be sure to look very carefully at the recurring costs of this product, with respect to licensing and hardware/software maintenance. Incentivized Verified User Anonymous Read full review
ScreenShots