Catch a good value for low cost with exceptional features
Overall Satisfaction with Palo Alto Networks WildFire
It's been used as an APT and zero day. It's leveraging the current Palo Alto deployment where they're located at perimeter, data center and cloud.
Main usage is for the perimeter defense for the whole organization.
Without WildFire, static analysis and file checks do not give the up-to-date protection level for current infrastructure. That's also assisting the SOC for threat detection and hunting. Autofocus integration is a plus for file trajectory. API integrations with different solutions enrich the product usability.
- Integration with Palo Alto solutions (very easy and one-click).
- Zero day detection.
- AutoFocus integration.
- Leveraging the Palo Alto threat prevention features.
- API integration with different solutions (many of them already built-in configurations).
- Unit 42 threat research team behind the WildFire.
- Integration with 3rd-party feeds.
- Upcoming solutions and acquisitions of Palo Alto are integrated and built-in capability of WF usage.
- Local WF appliance is lacking in term of functionality like no bare metal analysis in local solution.
- No new features coming to local WF appliances.
- No built-in integration with GlobalProtect Agent.
- Cloud WF does not have the option for specific regions to be used (compliance).
- Cloud side does not have alarming option for [degraded] performance.
- Lack of forensics (needs additional product or integration).
- Adding it to the already implied PAN infrastructure is cheap compared to other vendors.
- Opening WF integration on the Datacenter segmentation is somehow costly.
- From the audit perspective it's covering the gaps of IT security.
I don't want to mention the names and capabilities of all the products. We are making several POCs, acquired and deployed in the production network. WildFire's main advantage is the cost. You do not need additional HW, SW or maintenance/operational cost to run this product.
Monitoring is very good. Not very complex, make the configuration and runs without worry.
File/malware detection rates are very high. And it works like it's expected to.
FP rates are low.
Do you think Palo Alto Networks WildFire delivers good value for the price?
Are you happy with Palo Alto Networks WildFire's feature set?
Did Palo Alto Networks WildFire live up to sales and marketing promises?
Did implementation of Palo Alto Networks WildFire go as expected?
Would you buy Palo Alto Networks WildFire again?
If an already implied Palo Alto Networks solutions, I'll definitely recommend.
From the cost perspective it's very competitive even from the scratch to get a Palo Alto Network firewall and open TP + WF. It'll surely cover your ATP needs.
Virtualwire integration with PAN firewall and WF works well and very easy to setup. Even it can be used additional 2nd layer of defense for enhancing current solutions.
Reports are magnificent.
Performance is great.
However for heterogeneous environments there are other solutions to take a look at.
For local-only solutions: Wildfire is not very suitable as it's lacking in terms of functionality.