Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series vs. SecureLink Enterprise Access

PaloAlto VM-200 is a virtualized firewall with high processing power and network edge protection. The great advantage is being able to implement in a VMware environment without worrying about hardware, rack space, physical network connections and others. It can be easily managed via the web and remotely to create protection, access and reporting rules. The VM-200 firewall can be used by any company, small or large because it has several models available according to the real needs of each one.

Incentivized

It does exactly what it needs to. The only times I've had serious issues with rolling out to a vendor is when they have a "contractual agreement" to only use their solution. Almost every vendor that I've worked with and shown this product to has been skeptical for the first 5 minutes and fully converted to liking the ease of use of the product by 10 minutes

• Decrypt internet traffic
• daily reporting of top internet users
• classify internet traffic in real-time to allow us to understand the organization needs.
• Strong AI capabilities

Incentivized

• Easy to setup on a client PC or server for access
• Organizes client connections by gatekeeper so it is easy to find what you need
• File transfer option is great for uploading files to client servers

• High Availability can be improved to allow active-active deployment
• All command line documentation to provide and support automation
• It will be nice to have link aggregation just like in the hardware firewall models.

Incentivized

• Java based. Always an issue. I know they are working on this and it will be Javaless if we need it. I know that Java can cause issues across the board and I understand the need of it, but it does not make it any better when there are Java issues.
• Stronger integration with the Active Directory. Currently its only read-only, which is good and bad.
• I would love to see an App. I know they are working on this as well.

We are happy using securelink to access our client environments

It is very easy to use, even for those with little experience in this particular firewall. Some of the advanced content filtering and content-based policies are difficult to pick up; however, almost all required decoders are built in. Built-in logging and rule testing make rule definition easy, and labels/tags allow filtering, grouping, and categorisation of rules. Updates are easy, and high availability is also reliable.

Incentivized

Palo Alto VM series are best selling and industry's top-selling security product which customers prefer while securing their public cloud environment

Incentivized

The employees at Securelink have always been responsive and seem to be invested in the success of my company. They truly understand what their product means to us so if there is a problem, they are always willing to help. In the rare event that something is found on their end, they will be proactive and reach out to someone to help and get something on calendar for a fix

palo alto firewalls are application-oriented systems. They can beat other product which are based on layer 3/4 inspection. Vm series are also quickly available and could be useful in urgent deployment needs . other vendors like Fortinet and cisco could take much more time to provide the VM and in some cases installation and license validation are complicated

Incentivized

Securelink seems to work better than LogMein for a large enterprise group. Our company has over 10,000 different connections and securelink manages them well.

• ROI has been achieved quickly through lack of security incidents.
• Inline filtering happens at line rate, unline Sourcefire from Cisco.
• Great incentives from PAN to switch made a difference in the choice to change.

Incentivized

• I've found that Securelink allows me to get a vendor access to an application for support purposes much faster than a provisioned VPN account and the red tape around this. I can set up a vendor to access an application suite in a half hour and it will be more secure than regular provisioning.
• The ROI is yet to be seen on this, but it certainly makes Compliance, Internal Audit, and Legal very happy, which helps everybody.
• Internally, there is much more push back and it has been problematic. For a tech, to have to log in to a server and navigate to a system is considered cumbersome, when before all they had to do was open up Putty or RDP to a server to get in. The only way to combat this is to force them to use Securelink by removing rights. Near impossible for the domain admins.