TrustRadius Insights
Users have praised Palo Alto Firewall for its advanced features, such as content filtering and application filtering, which effectively …
Overview
What is Next-Generation Firewalls - PA Series?
Palo Alto next-generation firewalls classify all traffic, including encrypted and internal traffic, based on application, application function, user and content. Users can create security policies to enable only authorized users to run sanctioned applications.
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Policy-based Controls (21)10.0100%
- Content Inspection (21)9.999%
- Identification Technologies (21)9.999%
- Visualization Tools (21)9.090%
Pricing
N/A
Unavailable
What is Next-Generation Firewalls - PA Series?
Palo Alto next-generation firewalls classify all traffic, including encrypted and internal traffic, based on application, application function, user and content. Users can create security policies to enable only authorized users to run sanctioned applications.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
46 people also want pricing
Alternatives Pricing
What is Cisco Meraki MX?
Cisco Meraki MX Firewalls is a combined UTM and Software-Defined WAN solution. Meraki is managed via the cloud, and provides core firewall services, including site-to-site VPN, plus network monitoring.
N/A
Unavailable
What is Cisco Firepower 9300 Series?
The Cisco Firepower 9300 series is presented by the vendor as a carrier-grade next-generation firewall (NGFW) ideal for data centers and high-performance settings that require low latency and high throughput. With it, the vendor providdes, users can deliver scalable, consistent security to…
Features
Return to navigation
Product Details
- About
- Tech Details
- FAQs
What is Next-Generation Firewalls - PA Series?
Palo Alto Network’s Next-Generation Firewalls is a firewall option integrated with other Palo Alto security products. NGFWs classify and monitor all traffic, including encrypted and internal traffic, based on application, function, user, and content. Palo Alto emphasizes the Zero Trust policy, through which users can create security policies to enable only authorized users to run sanctioned applications, reducing the surface area of cyber attacks across the organization. Palo Alto’s NGFW provides in-firewall encryption and decryption, as well as data and application segmentation. It integrates with PA’s WildFire malware prevention service and supports easy adoption with an open-source tool for firewall migration. It encompasses on-premises and cloud environments for full-system security. |
Next-Generation Firewalls - PA Series Technical Details
| Operating Systems | Unspecified |
|---|---|
| Mobile Application | No |
Frequently Asked Questions
Palo Alto next-generation firewalls classify all traffic, including encrypted and internal traffic, based on application, application function, user and content. Users can create security policies to enable only authorized users to run sanctioned applications.
Reviewers rate Policy-based Controls and Firewall Management Console and High Availability highest, with a score of 10.
The most common users of Next-Generation Firewalls - PA Series are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(163)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
- Pros
- Cons
Users have praised Palo Alto Firewall for its advanced features, such as content filtering and application filtering, which effectively prevent malicious traffic and unauthorized access. The IDS/IPS and advanced malware protection features have been commended for their deep scanning capabilities and sandboxing functionality. Palo Alto Firewall is chosen by customers with large organizations that prioritize deep security investments. It is commonly used to protect perimeter networks, provide VPN connectivity, and mitigate potential misuse of the internet and attacks from shady websites. Users have successfully achieved network security, URL filtering, application control, and prevention of known and zero-day attacks with Palo Alto NGFW. The firewall serves as a reliable perimeter defense product, providing threat assessment, web proxy, and SSL inspection. It effectively addresses the problem of external intrusions and offers both basic and advanced firewall features, including protection against application-level threats, VPN management, and dynamic block lists. Palo Alto Firewall has proven itself in securing data center resources while providing enhanced security and control. The Next-Generation Firewalls are also used to secure the organization's perimeter by providing application visibility and threat intelligence to mitigate risk. Users have reported that Palo Alto Next-Generation Firewalls and WildFire have played a crucial role in quickly identifying and isolating new security threats like WannaCry.
Intuitive User Interface: Users have consistently found the user interface of Palo Alto Networks Next-Generation Firewalls - PA Series to be intuitive, making it easy to configure the firewall and perform tasks quickly. Several reviewers have mentioned this as a standout feature.
Advanced Security Features: Many users have praised the advanced features of the firewall, such as application filtering, content filtering, and deep packet inspection. These features provide enhanced security and contribute to the effectiveness of the product in protecting against malware and ransomware.
Seamless Integration with Third-Party Tools: Reviewers have appreciated the seamless integration of Palo Alto Networks Next-Generation Firewalls - PA Series with third-party tools and systems. Specifically, they mention ClearPass from HPE Aruba for user authentication and syslog integration. This integration enhances overall functionality and allows for a more streamlined experience when working with multiple tools simultaneously.
Complicated Implementation: Implementing the product into an existing network has proven to be a challenge for many users. Several reviewers have mentioned that they found it complicated and time-consuming to integrate the product with their current network infrastructure.
Difficult Packet Flow Understanding: Beginners have struggled with understanding the packet flow in Palo Alto's product. Some users have expressed frustration at the complexity of the packet flow, finding it difficult to grasp how data is processed within the system.
Expensive Compared to Competitors: The cost of Palo Alto's product is a common concern among users. Many reviewers feel that the price is high compared to other available solutions in the market. Some users believe that similar features can be obtained from competitors at a lower cost.
Attribute Ratings
Reviews
(26-37 of 37)Companies can't remove reviews or game the system. Here's why
- Positive ROI - combining firewall technology with threat prevention/detection removing the need (in many cases) of a separate IPS/IDS
- Positive ROI - combining multiple firewalls into one where appropriate leveraging zone based firewalling
- Negative ROI - none discovered yet
December 08, 2018
Palo is about as good as it gets.
- Great up-time and reliability. May cost a little more but is worth it.
- Between our PA firewalls and our Juniper switching infrastructure, we are pulling almost .9999 of up-time.
- There are always problems with vendors working VPN tunnels and protocols together and we have a known issue with OSPF with one of our PA's and another vendor and PA cant seem to figure it out. We're planning on replacing the old legacy box soon to alleviate this dilemma.
November 21, 2018
Great Enterprise Level Networks Next-Generation Firewalls
- Technical support is excellent without a doubt, qualified support engineers and responsive. We had a few crises and managed to push through under pressure thanks to the tech support.
- The ease of use was a strong selling point. The management console is very simple to use and we were up and running in a production environment very quickly without any issues.
- I like the application awareness of the firewall. Really allows you to monitor what is going on and what users are doing.
October 12, 2018
PANTASTIC
- Intrusion reduction .
- High availability uptime
- Data leak prevention
January 30, 2018
Palo Alto will stop the bad guys for you!
- We used to outsource our Firewall and it's management. Not only did we find their SLA's to be lacking, in general, but communication between us was horrible. Many times we could not understand them and that resulted in less than desirable rule creation or troubleshooting.
- Since we no longer have to pay a company for 24/7 management (and SLOW SLA's) we are saving a ton of money each year. Also our fellow employee's are much happier that things can be resolved in a timely manner.
October 17, 2017
Not Beginner-friendly, but Powerful and Comprehensive
- Within minutes of installing a PA in passive mode, we were able to identify dozens of attacks on our network.
- In the first month, we were able to provide executive reviews of attacks on our network, usage statistics of our Internet connections, and use of our cloud resources.
- Our PA installation helped us discover a major exfiltration attempt, document it, and bring a compelling case against the perpetrator.
- It has dramatically reduced malware and virus intrusions, and supported our efforts at eliminating unauthorized network usage for personal purposes, such as downloading movies, videos and music. That has freed up the network to function according to the bandwidth levels we purchased.
- Overall, even though the device is very expensive (both hardware and licensing), the product does produce a decent ROI, given that one (or HA pair) of devices can do so many things, such as anti-virus, anti-malware, URL filtering, SSL decryption, SSL VPN, routing, etc.
- There will definitely be sticker shock when you're renewal comes up annually (or after 3 years), so be sure to look very carefully at the recurring costs of this product, with respect to licensing and hardware/software maintenance.
March 17, 2017
Palo Alto Review
- Dynamic protection against all types of threats
- Excellent ROI by protecting from otherwise devastating attacks
- Easy to use GUI reduces staff time for management and administration
- ROI could be measured in the first few attacks you prevent. IT leaders rarely include the cost of clean-up and preventative scanning of computers and networks in the ROI of a product purchase.
- Many IT departments do not understand what the financial impact to a business outage would be, but it's one of the most if not THE most critical ROI that should be calculated. In our company, we have too many users, services, applications, and partners who need 24x7 access to our network and to the Internet to compromise with less technology.
October 14, 2016
Firewall and Wildfire? Great!
- Less time for users to connect to the VPN (globalprotect can be set to be "always on")
June 29, 2016
Palo Alto PA-3000 series - a valuable and reliable resource for protecting your network
- I don't know how to put a dollar amount on ROI for this product nor can I say for sure what we may have been protected against had we not had the Palo Alto in place, but we have not had a ransomware attack or other security event since the device has been in place. I know from experience that responding to an event and remediating from an event can be costly in terms of lost user productivity and IT staff man-hours spent.
- As an IT staff member chiefly responsible for security, I spend less time looking for and blocking potential breaches or attempts since the Palo-Alto automatically detects and blocks many of those automatically without my intervention.