We performed a comparison between Palo Alto Networks NG Firewalls and Palo Alto Networks WildFire based on real PeerSpot user reviews.
Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls."We are using the FortiGate 100D series. VPN, firewall, anti-malware, OTM, and intrusion prevention are useful features."
"The most valuable features are the enterprise modeling and the simple interface."
"The most valuable features of Fortinet FortiGate are the rules and quality of service."
"Fortinet FortiGate protects against internet-based threats, both internal and external. It is scalable, stable, easy to use, and easy to install."
"Overall security features and performance routing is good."
"Fortinet FortiGate is easy to use."
"The reporting and monitoring are very good."
"We can use our devices to check all of the perimeters. It secures email websites."
"The DNS sync code in your filtering is the most valuable feature of the Palo Alto Networks NG Firewalls."
"The management options are good."
"From my experience, comparing it to other products, the granularity you can have in the application is very good. The application detection is excellent. It's certainly one of the best."
"DNS Security is a good feature because, in the real world with web threats, you can block all web threats and bad sites. DNS Security helps to prevent those threats. It's also very helpful with Zero-day attacks because DNS Security blocks all DNS requests before any antivirus would know that such requests contain a virus or a threat to your PC or your network."
"The user experience is good and the configuration is very easy."
"It is critical that Palo Alto Networks NG Firewalls embeds machine learning in the core of the firewall to provide inline, real-time attack prevention. In my environments, we have an integration with a third-party vendor. As soon as there is new information about new threats and the destination that they are trying to reach on any of our network devices, that traffic will be stopped."
"I love the Policy Optimizer feature. I am also completely happy with its stability."
"The most significant benefit is threat protection. Anti-malware uses signatures, so dynamic analyzers like WildFire are the best way to protect the company. It is a firewall based on application control, user ID, and security policy. We can use it based on user and application ID without a stateless firewall or TCPIP ports."
"The most valuable feature is the cloud-based protection against zero-day malware attacks."
"It gives a more accurate assessment of a virus in terms of whether it's truly a virus, malware, or a false positive. We have some legacy software that could pop up as being something that is malware. WildFire goes through and inspects it, and then it comes back and lets us know if it's a false positive. Usually, when it finds out that it's not a virus, it lets us know that it's benign, and it can exclude it from that scan, which means I don't even have to worry about that one popping up anymore."
"Detailed reporting on analysis of content. The inspections are easily applied to security policy profiles and profile groups, and may be assigned on a per-rule basis."
"Whole team can use the firewall and understand it."
"We get support in the free version."
"The scalability is acceptable."
"Stability is never a concern."
"You have better control because you define apps. You just don't define ports. You define apps, and the apps are monitored in the traffic. It is more specific than the Cisco firewall when it comes to our needs."
"Vulnerability scanning could be improved."
"Some configuration elements cannot be easily altered once created."
"The updates Fortinet provides are sometimes unstable."
"We would like to see an upgrade to the VPN feature, we are using the VPN from outside of our office and there is a limitation to 10 connections, more connections would be suitable."
"A lack of integration between our data centers."
"The central management for the FortiGate Fortinet Firewall needs improvement. They have the manager to do the essential management for both SD-WAN and for the security policy. They should also improve the SD-WAN function."
"Fortinet FortiGate could improve by having a frequent ask questions(FAQ) area for people to receive quick answers to popular questions. Additionally, it would be beneficial to have an SMS notification feature. For example, if you cannot access your email you could receive an SMS message."
"I haven't had a single issue since using Fortinet."
"I'm thinking about a new feature. They have decryption. It's a good idea to use decryption on Palo Alto. It would be good if they had offloading of the traffic, and if they could decrypt the traffic and offload it. Like, for example, ASM on our site. We have an SSL decryption to offload the traffic. We could use that on Palo Alto."
"I think they need to have a proper hardware version for a smaller enterprise. We had to go to a very high-end version which is very expensive. If we chose the lower-end version, it would not meet our goals. A middle-end is missing in its portfolio."
"Most other VPN clients include mobile VPNs but Palo Alto does not."
"The pricing could be improved upon."
"There is a tradeoff between security and network performance, as security is always top-notch, but performance can sometimes lag and has room for improvement."
"People sometimes find it more expensive as compared to other solutions. There are also fewer training opportunities for Palo Alto than Cisco and other vendors."
"The user interface is a bit clumsy and not very user-friendly."
"If you enable SSL you will face a problem. The throughput of the firewall will be degraded. SSL is a big issue on all firewalls. All products suffer from issues with SSL, but Palo Alto firewalls suffer more from it."
"The only problem with this solution is the cost. It's expensive."
"The price could be better."
"The cost of this solution could still be improved, in particular, giving product discounts for charitable causes."
"The solution can improve its traffic management."
"The product fails to offer protection when dealing with high-severity vulnerabilities, making it an area of concern where improvements are required."
"The automation and responsiveness need improvement."
"The data analytical system for deployment needs to improve."
"The system performance degrades after the solution has been deployed for some time. The data that it gives us becomes a little bit slow. When you try to get some data for troubleshooting, it seems like it's working hard to extract that data."
More Palo Alto Networks NG Firewalls Pricing and Cost Advice →
Palo Alto Networks NG Firewalls is ranked 6th in Firewalls with 161 reviews while Palo Alto Networks WildFire is ranked 3rd in Advanced Threat Protection (ATP) with 58 reviews. Palo Alto Networks NG Firewalls is rated 8.6, while Palo Alto Networks WildFire is rated 8.4. The top reviewer of Palo Alto Networks NG Firewalls writes "We get reports back from WildFire on a minute-by-minute basis". On the other hand, the top reviewer of Palo Alto Networks WildFire writes "Good technical support and provides automatic analysis that saves us time in filtering email". Palo Alto Networks NG Firewalls is most compared with Check Point NGFW, Azure Firewall, Meraki MX, Sophos XG and Netgate pfSense, whereas Palo Alto Networks WildFire is most compared with Cisco Secure Firewall, Proofpoint Email Protection, Juniper SRX Series Firewall, Fortinet FortiSandbox and Check Point SandBlast Network.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
I’m not an expert on Palo-Alto but what I do know is that they do offer of the top 3 IT security solutions in the world today. Most companies offer a very good firewall solution and one I can recommend is Check Point. Check Points Next generation firewall goes beyond the standard security protocols a lot of us as used to (Anti-Virus. Anti-Bot, URL filtering, Application control etc) and take it a step beyond by protecting your organization from unknown threats such as Ransomware and zero-day attacks (uniquely designed malware targeting specific customers).
They do this using Sandblast Zero day attack Protection application that quarantines the incoming data (such as an email attachment) in a Sandbox and then executes the application within the sand box monitoring its behaviour. Should it not like what the is looking for the software will take a snapshot of the content copy it to a pdf file and then send that on to the user whilst it cleans the infected file.
This not only prevents attacks but it also ensures business continuity. Please check out this link for more www.checkpoint.com
i already check gartner reports, i think UTM is legace now and NGFW id new
thanks
You can also check www.gartner.com, And make sure are you looking for UTM or NGFW
Dears
I really have same project and same recommended, my question is:
what is impact of NSS Lab in my decision? last report of nss lab, palo alto get 40% of security effectiveness .!!!
where is the firewall location ? core,edge....
what is throughput of the firewall after enable URL filtering ? not mention in sheets.
what is throughput of the firewall after enable ssl decryption ?
best regards