Cisco Meraki MX vs. Palo Alto Networks Next-Generation Firewalls - PA Series

Palo Alto Networks Next-Generation Firewalls - PA Series

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Cisco Meraki MX	Score 8.4 out of 10	N/A	Cisco Meraki MX Firewalls is a combined UTM and Software-Defined WAN solution. Meraki is managed via the cloud, and provides core firewall services, including site-to-site VPN, plus network monitoring.	$595 per appliance
Next-Generation Firewalls - PA Series	Score 9.3 out of 10	N/A	Palo Alto next-generation firewalls classify all traffic, including encrypted and internal traffic, based on application, application function, user and content. Users can create security policies to enable only authorized users to run sanctioned applications.	N/A

Pricing

Cisco Meraki MX

Palo Alto Networks Next-Generation Firewalls - PA Series

Editions & Modules

MX64: $595
per appliance
MX67: $695
per appliance
MX68: $995
per appliance
MX84: $1,995
per appliance
MX100: $4,995
per appliance
MX250: $9,995
per appliance
MX450: $19,995
per appliance

No answers on this topic

Offerings

Pricing Offerings
Cisco Meraki MX	Next-Generation Firewalls - PA Series
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

—

More Pricing Information

Pricing Info

Community Pulse
	Cisco Meraki MX	Palo Alto Networks Next-Generation Firewalls - PA Series
Considered Both Products	Cisco Meraki MX Christopher Hammond Network Engineer Chose Cisco Meraki MX Meraki is just easier to use and deploy. It’s not the cheapest option, nor is it the most feature rich or performant firewall platform. But when you need something that works and meets PCI/HIPAA compliance, with very little effort to use, this is the ideal platform for you. … Incentivized Helpful? Verified User C-Level Executive Chose Cisco Meraki MX Cisco Meraki MX is a different product targeted at different markets, not exactly a UTM / NGFW. Centralized management and a single pane of glass add a lot of value. Again there are sites where no MX can replace a PA due to the configuration requirements and performance … Incentivized Helpful? Derek Benson Infrastructure, Network Administrator II Chose Cisco Meraki MX I have primarily used Palo Altos (from the small PA220s to the bigger PA3000s) and while the PAs have a greater learning curve I believe them to be the superior firewall. They are more of a compromise of features/advanced options to ease-of-use, with Meraki leaning more heavily … Incentivized Helpful? VL Victor Lau Network Architect Chose Cisco Meraki MX Depends on the use case. Meraki shines in the area of ease of management and ease of deployment. This is typically retail customers with many locations or customers with lean IT staff. Meraki MX seems not to do well in complex environments with heavy IT staff requirements. … Incentivized Helpful? LL Luis Lozada Engineering Team Lead Chose Cisco Meraki MX Meraki MX's have their place due to the ease of configuration, management, and cost. That is small to mid size businesses. If you require features such as the full suite of NG firewall options, SD-WAN, and granularity of ACL/Policy rules, then Fortinet, Palo Alto and/or … Incentivized Helpful? Verified User Director Chose Cisco Meraki MX Meraki was within our budget and fit the size of our organization. Incentivized Helpful?	Next-Generation Firewalls - PA Series Verified User Professional Chose Palo Alto Networks Next-Generation Firewalls - PA Series These are cheaper (or at least were) than the Meraki firewalls and they allow you to integrate with Palo Alto Wildfire, which is valuable. This allows for a more real time analysis of packets (though we may have to upgrade to a larger firewall to use this). The PA-500 VPN is … Incentivized Helpful?
Top Pros	Pro Content filtering Pro Cloud management Pro Site to site	Pro Url filtering Pro Malware protection Pro Application control
Top Cons	Minus Vpn connections Minus Cisco meraki Minus Licensing costs	Minus Difficult to configure Minus Less documentation Minus Web interface

Features

Cisco Meraki MX

Palo Alto Networks Next-Generation Firewalls - PA Series

Firewall

Comparison of Firewall features of Product A and Product B
	Cisco Meraki MX 7.7 63 Ratings 10% below category average	Palo Alto Networks Next-Generation Firewalls - PA Series 9.5 21 Ratings 11% above category average
Identification Technologies	7.960 Ratings	9.921 Ratings
Visualization Tools	8.160 Ratings	9.121 Ratings
Content Inspection	7.560 Ratings	9.921 Ratings
Policy-based Controls	7.359 Ratings	10.021 Ratings
Active Directory and LDAP	7.552 Ratings	9.920 Ratings
Firewall Management Console	7.761 Ratings	9.921 Ratings
Reporting and Logging	7.363 Ratings	8.021 Ratings
VPN	7.560 Ratings	8.621 Ratings
High Availability	8.159 Ratings	10.020 Ratings
Stateful Inspection	8.255 Ratings	10.020 Ratings
Proxy Server	7.834 Ratings	8.910 Ratings

Best Alternatives
	Cisco Meraki MX	Palo Alto Networks Next-Generation Firewalls - PA Series
Small Businesses	WatchGuard Network Security Score 9.2 out of 10	WatchGuard Network Security Score 9.2 out of 10
Medium-sized Companies	Cisco Firepower 4100 Series Score 9.3 out of 10	Cisco Firepower 4100 Series Score 9.3 out of 10
Enterprises	Next-Generation Firewalls - PA Series Score 9.3 out of 10	Check Point Quantum Security Gateway Score 8.9 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Cisco Meraki MX	Palo Alto Networks Next-Generation Firewalls - PA Series
Likelihood to Recommend	7.9 (90 ratings)	9.6 (37 ratings)
Likelihood to Renew	7.3 (4 ratings)	10.0 (1 ratings)
Usability	8.2 (5 ratings)	10.0 (2 ratings)
Availability	9.1 (2 ratings)	- (0 ratings)
Performance	9.1 (2 ratings)	- (0 ratings)
Support Rating	8.0 (22 ratings)	8.4 (18 ratings)
Implementation Rating	7.0 (3 ratings)	- (0 ratings)
Product Scalability	8.6 (56 ratings)	- (0 ratings)

User Testimonials
	Cisco Meraki MX	Palo Alto Networks Next-Generation Firewalls - PA Series
Likelihood to Recommend	Cisco So most use cases, this product fits. There aren't that many situations where it doesn't, and I've put it inside of banks. I've used it inside of schools, I've used it at normal businesses, big, bigger, and or small, but very small use cases where it has not, and we could not lead with it was at some banks. They did require NetOver VPN when communicating with higher-fed entities. If in the future Meraki could include NetOver VPN, then this would just be an auto-include for most of our deployments. Incentivized CC Chris Castek Senior Systems Engineer Read full review	Palo Alto Networks Palo Alto firewall only affords by Large level infrastructure having a budget for Security Prospect. I will recommend it for the Card information industry & Confidential data solutions. Because it provides a bucket of security features that are not easily vulnerable. Incentivized Vinit Sharma Network Administrator Read full review
Pros	Cisco The appliances are very, very easy to use. You could set one up for basic use with minimal documentation. Intuitive menus in the Meraki Dashboard make traversing your options and finding what you need very easy. Good support options and a healthy knowledge base with well-written guides. Incentivized Derek Benson Infrastructure, Network Administrator II Read full review	Palo Alto Networks The PA handles VPN connectivity without missing a beat. We have multiple VPN tunnels in use for redundancy to cloud-based services. The PA has great functionality in supporting failover internet connections, again with the ability to have multiple paths out to our cloud-based services. The PA is updated on the regular with various security updates, we are not concerned with the firewall's ability to see what packets are really flowing across the network. Being able to see beyond just IP and port requests lets you know things are locked down better than traditional firewalls. It is a great overall kit, with URL filtering and other services that fill in the gaps between other solutions without breaking the bank. Incentivized Verified User Anonymous Read full review
Cons	Cisco Firewall Policies Hardware Performance Statistics IPS Performance + Efficacy Limited port counts when leveraging network templates on higher end units. No options for HTTPS decrypt or encrypt visibility No EIGRP Routing No ability to clear ARP table / release DHCP leases through GUI Incentivized Christopher Hammond Network Engineer Read full review	Palo Alto Networks Our specific model is a bit slow and outdated and takes up to 10 minutes to commit a configuration change. Nested security rules would be helpful instead of a linear approach. But rule creation in general is very simple. Documentation gives a very straight forward answer to some items but is very vague in others. Support could be a little better. An issue we had a tech was insistent it was the "other guy" and it ended up being the very latest PAN OS upgrade. Incentivized Christopher St.Amand Senior Network Security Engineer Read full review
Likelihood to Renew	Cisco As we have it in place now, we will continue to keep it at our remote sites. Future expansion is something we are reviewing, and may well start with some of the larger switches as they seem to offer good performance and management at a reasonable price. Wireless is also something we're investing in and their devices are great for that. Incentivized James Martin IT Manager Read full review	Palo Alto Networks The PA5220s have far exceeded what we have expected out of them. It was a bit of a learning curve coming from another vendor, but everything falls into place now with ease. The capabilities of the solution still surprise us, allowing us to remove other costly hardware and providing a single point of management needed Incentivized Verified User Anonymous Read full review
Usability	Cisco The Cisco Meraki MX series is very easy to use. Setting up user VPN access, site to site VPN to tie multiple locations together and managing all your devices. You can even download the latest firmware and install without ever leaving the dashboard. Meraki is the very definition of easy to use Incentivized Wesley Bond Director of Information Technology Read full review	Palo Alto Networks In my opinion, the Palo Alto Firewall is the simplest firewall in terms of management interfaces; though it has more advanced options that apply to more advanced use cases. Configuring basic features on the firewall is nearly self-explanatory; configuring more advanced features can be met with very thorough vendor documentation. Incentivized Verified User Anonymous Read full review
Support Rating	Cisco I haven't ever had a bad experience with Meraki support. On the few occasions where I wasn't understanding the UI or needed some clarification about what a setting actually would do, I contacted them and they were very quickly able to provide help. Returns are simple and fast, too. We had to return a defective device one time and they shipped the replacement before we had even un-racked the one that was faulty. Unlike many other vendors, they didn't ask use to a do long list of scripted diagnostics, they just took my word for it that the device was broken and sent out a replacement immediately Incentivized Jane Updegraff Senior Systems Administrator Read full review	Palo Alto Networks We've run into a couple undocumented bugs, but that seems to happen with every brand and technology. Any time we've had to engage Palo Alto support they've always been professional, knowledgeable and prompt. In almost all cases we've been able to resolve our issues without having to escalate our tickets. Incentivized PL Paul Luchini Network Engineer Read full review
Implementation Rating	Cisco Good product and simple to use. Incentivized James Martin IT Manager Read full review	Palo Alto Networks No answers on this topic
Alternatives Considered	Cisco I have used Sonicwall and Meraki, and they are very similar and functional, but they go about it in different ways. Meraki is a little more user-friendly with less of a learning curve, but it comes at a little steeper price. I do like the online dashboard of Meraki better, though. Incentivized RM Ryan Mouser System Administrator Read full review	Palo Alto Networks No one can say any other companies in this time is better than Palo Alto Networks Next-Generatoin Firewalls. Palo Alto offers very advanced features which protect you[r] organization. Advanced malware protection, anti spam, lots of other threats. Incentivized Basant Gupta Executive System Admin Read full review
Scalability	Cisco Every network we create will allow us to automatically be attached in the mesh network. The ability for the automatic VPN connections is very convenient and allow us to focus on other configuration points without having to worry about if the VPN will work or not. The GUI showing the VPN is kind of confusing, but as long as it has direct connection to the other Meraki MX units, it will be up. Incentivized AD Anthony Decker Network Engineer Read full review	Palo Alto Networks No answers on this topic
Return on Investment	Cisco Network hardware needs to function 100% of the time with no one really ever thinking about it - it just needs to work. Cisco delivers here. The Cisco Meraki MX products are fast and reliable helping productivity. Cisco's support is solid and helpful. Incentivized Kevin Garibaldi Owner Read full review	Palo Alto Networks Overall, even though the device is very expensive (both hardware and licensing), the product does produce a decent ROI, given that one (or HA pair) of devices can do so many things, such as anti-virus, anti-malware, URL filtering, SSL decryption, SSL VPN, routing, etc. There will definitely be sticker shock when you're renewal comes up annually (or after 3 years), so be sure to look very carefully at the recurring costs of this product, with respect to licensing and hardware/software maintenance. Incentivized Verified User Anonymous Read full review
ScreenShots