"Another benefit has been user integration. We try to integrate our policies so that we can create policies based on active users. We can create policies based on who is accessing a resource instead of just IP addresses and ports."
"Cisco's technical support is the best and that's why everybody implements their products."
"The features I've found most valuable are the packet captures and packet traces because they help me debug connections. I like the logs because they help me see what's going on."
"We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government."
"Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch."
"The deep packet inspection is useful, but the most useful feature is application awareness. You can filter on the app rather than on a static TCP port."
"The most valuable feature would be ASDM. The ability to go in, visualize and see the world base in a clear and consistent manner is very powerful."
"The most valuable feature is stability."
"The feature that I have found the most useful is that it meets all our requirements technically."
"The Palo Alto VM-Series is nice because I can move the firewalls easily."
"The initial setup was straightforward."
"The VM series has an advantage over the physical version because we are able to change the sources that the machine has, such as the amount of available RAM."
"The most valuable features are the User ID, URL filtering, and application filtering."
"It has excellent scalability."
"With the improved visibility we now have, the traffic is being properly monitored, which means that we are better able to manage it. These are improvements that we saw very quickly."
"The most valuable feature is the Posture Assessment."
"We purchased the AGSS Bundle (Advanced Gateway Security Suite) for the security services, such as antivirus, intrusion prevention system, and anti-spyware botnet GUI."
"The security of this system is fantastic, including the IPS and IDS."
"An area of improvement for this solution is the console visualization."
"I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here."
"I believe that the current feature set of the device is very good and the only thing that Cisco should work on is improving the user experience with the device."
"The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore."
"The initial setup can be a bit complex for those unfamiliar with the solution."
"Web filtering needs improvement because sometimes the URL is miscategorized."
"The price and SD-WAN capabilities are the areas that need improvement."
"Deploying configurations takes longer than it should."
"Palo Alto is that it is really bad when it comes to technical support."
"The disadvantage with Palo Alto is that they don't have a cloud-based solution that includes a secure web gateway."
"We feel that the setup was complex. So, we asked the tech team about the setup process. They explained how to deploy it in the right way, which made it very simple."
"In the next release, I would like to see better integration between the endpoints and the firewalls."
"The product needs improvement in their Secure Access Service Edge."
"It would be good if the common features work consistently in physical and virtual environments. There was an integration issue in the virtual deployment where it didn't report the interface counters, and we had to upgrade to the latest version, whereas the same thing has been working in the physical deployment for ages now. It seems that it was because of Azure. We were using VMware before, and we didn't have any such issues. We do see such small issues where we expect things to work, but they don't because of some incompatibilities. There also seems to be a limitation on how to do high availability in a virtualized environment. All features should be consistently available in physical and virtual environments. It is not always easy to integrate Palo Alto in the network management system. We would like to be able to compare two network management systems. They can maybe allow monitoring an interface through the GUI to create a reference or do a baseline check about whether your network monitoring system is actually giving you the correct traffic figures. You need traffic figures to be able to recognize the trends and plan the capacity."
"It'll help if Palo Alto Networks provided better documentation."
"It would be helpful if we had a direct number for the support manager or the supporting engineer. That would be better than having to email every time because there would be less wait."
"I would like to see the reporting opened up and have several more opportunities for automatic reports."
"There are limitations to bandwidth management."
More Cisco Firepower NGFW Firewall Pricing and Cost Advice →
Palo Alto Networks VM-Series is ranked 10th in Firewalls with 13 reviews while SonicWall NSV is ranked 30th in Firewalls with 2 reviews. Palo Alto Networks VM-Series is rated 8.6, while SonicWall NSV is rated 8.0. The top reviewer of Palo Alto Networks VM-Series writes "An excellent solution for the right situations and businesses". On the other hand, the top reviewer of SonicWall NSV writes "Reliable, easy to scale, and reasonably priced ". Palo Alto Networks VM-Series is most compared with Azure Firewall, Cisco ASA Firewall, Fortinet FortiGate, Juniper SRX and Check Point CloudGuard Network Security, whereas SonicWall NSV is most compared with Azure Firewall, SonicWall NSa and Fortinet FortiGate-VM. See our Palo Alto Networks VM-Series vs. SonicWall NSV report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.