Palo Alto Networks Next-Generation Firewalls - features of a ML based firewall that you need to know!
August 04, 2021

Palo Alto Networks Next-Generation Firewalls - features of a ML based firewall that you need to know!

Darshil Sanghvi | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Software Version

PA-800 Series

Overall Satisfaction with Palo Alto Networks Next-Generation Firewalls - PA Series

We have deployed Palo Alto Networks Next-Generation Firewalls - PA Series in our Head office in High availability mode. This Palo Alto Networks Next-Generation Firewalls - PA Series is deployed on the internet gateway/perimeter to filter only good traffic and around 300 users and 30-35 servers are connected behind this firewall. Also, this firewall is responsible to prevent intruders, do gateway level Antivirus inspection, Malware filtering, URL filtering, anti-spyware, and file filtering for users to upload or download. We have also procured DNS security and Wildfire Sandbox along with the firewall.

Pros

  • Palo Alto Networks Next-Generation Firewalls - PA Series gives predictive performance, as per our sizing and requirements
  • It is integrated very well with internal features it is providing, like, Wildfire Sandbox integrated with gateway AV and URL filtering engine
  • Seamlessly integrates with 3rd party tools and systems, like integration with ClearPass from HPE Aruba for user auth, syslog integration, etc
  • Enhanced security features like EDL, Credential theft prevention, DNS Security, ML based firewall, which we cannot find in another solutions

Cons

  • Palo Alto Networks Next-Generation Firewalls - PA Series provides platform for network security but lacks features for additional features like built-in MFA, cloud based management, etc
  • In file filtering and AV module, there could be a few optional features of white listing a specific file by its name or hash value or some other detail.
  • Compared to other vendors, this is costly, but again, feature-rich and hence cannot be with other firewalls.
  • After deploying Palo Alto Networks Next-Generation Firewalls - PA Series, first and foremost is, we feel we are now secure against 100s and 1000s of attacks that are arriving from the internet. It is visible in Palo Alto Firewall Management console itself
  • It is helping us successfully prevent DoS and DDoS attacks, and hence protecting our internal resources.
  • It is a ML based firewall and hence we don't need to wait for signature updates to prevent every attack
  • For unknown threats, we have integrated Wildfire from Palo Alto Networks, which provides us SLA of 5 minutes to convert an unknown to known (safe or malicious) in 5 minutes straight.
  • URL filtering is much more enhanced than a normal proxy or another UTM and Firewall solution. With this, we are restricting access to unwanted web apps, and hence increasing users' productivity.

Do you think Palo Alto Networks Next-Generation Firewalls - PA Series delivers good value for the price?

Yes

Are you happy with Palo Alto Networks Next-Generation Firewalls - PA Series's feature set?

Yes

Did Palo Alto Networks Next-Generation Firewalls - PA Series live up to sales and marketing promises?

Yes

Did implementation of Palo Alto Networks Next-Generation Firewalls - PA Series go as expected?

Yes

Would you buy Palo Alto Networks Next-Generation Firewalls - PA Series again?

Yes

Palo Alto Networks Next-Generation Firewalls - PA Series is adopted by companies in every industry. Palo Alto is best suited as a perimeter or gateway level firewall for protection against modern threats, advanced attackers, and also for users to access the Internet safely. The reason being, this is purely an application-layer firewall, and performance is based on bandwidth and sessions classified on the application layer rather than just Layer 3/Layer 4 inspections. It has security features that you can add on as subscriptions and the best part is each feature is integrated with one another internally as well.

Palo Alto Networks Next-Generation Firewalls - PA Series Feature Ratings

Identification Technologies
9
Visualization Tools
9
Content Inspection
9
Policy-based Controls
10
Active Directory and LDAP
10
Firewall Management Console
10
Reporting and Logging
10
VPN
10
High Availability
10
Stateful Inspection
10

Comments

More Reviews of Palo Alto Networks Next-Generation Firewalls - PA Series