Palo Alto Networks NG Firewalls Reviews

For Palo Alto Networks NG Firewalls, clients mostly use this as a ZTNA solution, so it works as a perimeter firewall combined with ZTNA for external access and all other related functions.

We usually work with a whole bundle of subscriptions with Palo Alto Networks NG Firewalls, offering the ATP, URL filtering, DNS, and everything that the firewall can provide.

We use all the subscriptions that Palo Alto is offering, including WildFire, URL filtering, and ATP; basically, everything they provide is something we are offering to our customers.

My clients use AI technology with Palo Alto for analytics; Palo Alto Networks NG Firewalls has machine learning integrated into the firewalls that is actively utilized.

Palo Alto Networks NG Firewalls have precision AI that can recognize AI traffic, allowing you to control it within the company by blocking it if you have policies against employee use.

Segmentation and policy management in Palo Alto Networks NG Firewalls are mandatory, and that is why customers are using it.

The only room for improvement I see for Palo Alto Networks NG Firewalls is with their pricing; it could be more flexible for clients.

It could be cheaper because Fortinet is very aggressive with their pricing, but the functionalities of Palo Alto are really good.

The technical support from Palo Alto could be better; I find that it can be improved.

The issues are mainly with response time and quality, as their first level support used to be better a couple of years ago, but now you sometimes get support that isn't as good.

I have been working with Palo Alto Networks NG Firewalls for six to seven years.

The initial setup for Palo Alto Networks NG Firewalls is not easy to implement since it is an enterprise solution, but I find it intuitive.

For stability, I would rate Palo Alto Networks NG Firewalls a nine out of ten.

For scalability and the ability to expand, I rate it a nine out of ten.

The technical support from Palo Alto could be better; I find that it can be improved.

The issues are mainly with response time and quality, as their first level support used to be better a couple of years ago, but now you sometimes get support that isn't as good.

Positive

When comparing Palo Alto Networks NG Firewalls and Fortinet, it ultimately depends on the different types of customers they serve; Fortinet offers everything on one device, including wireless controllers, but Palo Alto has better functionality, stability, and is less compromised.

The initial setup for Palo Alto Networks NG Firewalls is not easy to implement since it is an enterprise solution, but I find it intuitive.

I would rate Palo Alto Networks NG Firewalls a nine out of ten, as it is a very good and stable solution, and I recommend it over Check Point, Fortinet, and Cisco; it stands out as the leader.

I can recommend Palo Alto Networks NG Firewalls for every company size; we are just starting to offer it for the SMB market, but it is an enterprise solution and they also have a series for small businesses.

On-premises

Other

In our country, there are multiple use cases. Usually, it is for virtual cases or virtual environments and source areas.

The most valuable feature is threat prevention. SSL VPN is also very valuable. These are essential for our clients, especially for access to local infrastructure while preventing Internet threats.

Our clients can have a unified cybersecurity system if they subscribe to it. This firewall is an important part of access to any data center or branch office. They have site-to-site connectivity.

It is a good product, but they can add some functions for port scanning and network scanning. More network functionality would be beneficial.

I have been working with the new generation firewall from Palo Alto Networks for two years.

The solution is very stable and reliable. I have not experienced any outages or issues. I would rate it a ten out of ten for stability.

The solution is scalable if the right model is purchased. It is important to assess the infrastructure size before choosing a model.

The technical support is very good. They offer fast and competent assistance. I would rate them a ten out of ten.

Positive

Its deployment is easy. It takes two to three days.

The initial setup process involves basic and network configuration, security and policy configuration, and then getting the device to the client.

It does not require much maintenance. One person is enough for it.

Its price is quite high but is justified for the features and capabilities provided, although I would prefer a lower price.

If you have the budget, I would recommend using Palo Alto Networks NG Firewalls instead of other brands because they offer the greatest functionality.

I would rate Palo Alto Networks NG Firewalls a ten out of ten.

Public Cloud

I mainly use Palo Alto Networks NG Firewalls as the firewall device, and I deploy it at the perimeter of the networks to secure our infrastructure.

By implementing Palo Alto Networks NG Firewalls, we mainly wanted web security and protection from DDoS and other attacks. We also wanted to provide a VPN solution so that mobile users could work from anywhere.

Palo Alto Networks NG Firewalls provide a unified platform that natively integrates all security capabilities. This is very important because with a single box, we can enable multiple security features and have web security, application security, and network security. It works on OSI model layers one to seven. It provides end-user security and enables us to allow any URL, website, or application for a user.

Palo Alto Networks NG Firewalls provide VPN solutions. With site-to-site or remote VPN, anyone from the organization can work from anywhere in the world. They only need Internet connectivity on their devices to connect to our enterprise network and access the required resources. It supports secure remote work through VPN connectivity.

Palo Alto Networks NG Firewalls are effective in preventing attacks by blocking abnormal behaviors. It detects any anomalies using signature-based detection and automatically alerts administrators. Palo Alto Networks NG Firewalls have machine learning embedded in the core to provide inline, real-time attack prevention.

We can use Palo Alto Networks NG Firewalls for securing data centers consistently across all workplaces, from the smallest office to the largest data centers. We can deploy the firewall anywhere based on business requirements. We can use Palo Alto Networks NG Firewalls at a broad level to secure our data center. Within the data center, we can also segment the network and deploy the perimeter firewalls between different departments. For example, if a salesperson is communicating with the database team or marketing team, the traffic has to pass through the firewall. The firewall inspects the behavior. If an internal employee is trying to delete a database file, the action will be prevented at the application level.

The solution provides web security, application security, and network security. We have app security, app gateway, and app ID. There are multiple models.

Palo Alto Networks NG Firewalls should be more flexible and user-friendly. 

There should be more comprehensive documentation, case histories, and technical training on new technologies available on their portal. It will help us with troubleshooting.

I have been using Palo Alto Networks NG Firewalls for ten years.

Palo Alto Networks NG Firewalls are very stable. I would rate Palo Alto Networks NG Firewalls a nine out of ten for stability.

Palo Alto Networks NG Firewalls are highly scalable, allowing deployment in various modes, including virtualized, cloud, and bare metal. We are using it at multiple locations.

I would rate Palo Alto Networks NG Firewalls a nine out of ten for scalability.

Palo Alto's tech support is fine. They are proactive, responsive, and effective in logging cases and troubleshooting.

Positive

We previously used Cisco ASA and switched to Palo Alto Networks NG Firewalls. It is very fast. We are not getting any latency. Palo Alto Networks NG Firewalls have a unique vertical packet inspection feature. It checks all parameters in a single shot, which makes it fast. Other firewalls, such as Check Point and Cisco, do the inspection horizontally, so there is a delay.

We have on-prem, hybrid, and cloud deployments. We have deployed Palo Alto Networks NG Firewalls on the AWS platform.

The initial setup was a bit complex initially, but with experience, it has become straightforward.

It does require maintenance. There could be a hardware fault. This is why we recommend deploying them in an HA environment.

I did the implementation myself. We have a team of five people.

For maintenance, one person is usually enough, but if you have multiple firewalls, you might require more people.

Everyone has different requirements. Palo Alto Networks NG Firewalls are a good and stable choice. They also have solutions for medium-sized enterprises. I would recommend trying Palo Alto Networks NG Firewalls.

Overall, I would rate Palo Alto Networks NG Firewalls an eight out of ten.

Palo Alto Networks NG Firewalls are our perimeter firewalls that protect the network from external attackers. They provide visibility into network activity, from layer four to layer seven, including application visibility, user awareness, and content awareness. These features are crucial for any network and organization, regardless of size, whether it's 20 users or two million users – they all need a firewall.

It's crucial that the entire cybersecurity landscape shifts from traditional methods to artificial intelligence and machine learning. When vendors stay current with emerging and future technologies, they're better positioned for success. This proactive approach ensures they remain relevant and effective in the ever-evolving cybersecurity space.

Palo Alto Networks NG Firewalls helped reduce our downtime.

The most valuable features of Palo Alto Networks NG Firewalls are DNS sync calls, enabled security features, and Wildfire.

The machine learning component on the firewall level requires more computing power to perform at the full production level. Therefore, the ML is currently providing partial real-time attack prevention.

In large data centers, enabling multiple features, such as SSL decryption, can lead to performance degradation. This is especially noticeable in Palo Alto firewalls when SSL inspection is enabled. Ideally, this shouldn't happen. To address this, enterprises are often forced to upgrade to higher-end models, which is unnecessary. Palo Alto needs to address this issue. When performance degrades due to full packet inspection, the solution should be to increase the computing power within the same firewall, not to recommend upgrading to a larger, more expensive model. Performance issues during full inspection need to be resolved without requiring hardware upgrades.

The technical support has room for improvement.

I have been using Palo Alto Networks NG Firewalls for five years.

I would rate the stability of Palo Alto Networks NG Firewalls six out of ten. After the upgrade, we are experiencing performance issues. Occasionally, we need to reboot the firewalls to refresh and recreate sessions. Gradually, performance returns to normal. Immediately following the upgrades, performance and utilization spike significantly.

I would rate the scalability of Palo Alto Networks NG Firewalls eight out of ten.

We previously used Checkpoint firewalls, but the performance was subpar and lacked an available interface. In contrast, Palo Alto Networks NG Firewalls offered more interfaces.

The initial deployment was not complex but we did face some issues with respect to dynamic routing configurations.

We used a third-party for the deployment.

We have observed an average return on investment from Palo Alto Networks NG Firewalls.

Palo Alto Networks NG Firewalls are expensive. The total cost of ownership is high.

I would rate Palo Alto Networks NG Firewalls six out of ten.

For those looking for the cheapest NG firewall, I would recommend Fortinet.

We deployed a total of four Palo Alto Networks NG Firewalls, two in the data center and two in the data recovery center. We have a total of 1,800 endpoints in our organization.

Frequent updates necessitate regular maintenance, which requires a team of four people.

Before purchasing, conduct a proof of concept to verify functionality, alignment with use cases and organizational requirements. Validate hardware compatibility and ensure correct sizing. Opt for direct Palo Alto OEM support instead of partner-enabled support.

On-premises

I use Palo Alto Networks NG Firewalls as a perimeter firewall for VPN accesses to secure data centers and complex networks, involving multiple sites connecting through a single point to the internet. At that point, I set up the security for all sites.

Palo Alto Networks NG Firewalls is most beneficial for network security as they use AI and machine learning, which are especially effective against zero-day attacks. Their AI is adept at identifying potential attacks or unusual traffic. Among the top three vendors—Fortinet, Check Point, and Palo Alto Networks—I find Palo Alto Networks to be the most efficient in dealing with zero-day threats due to their advanced use of AI and machine learning.

I believe the configuration part can be improved, particularly because the management tools like Panorama and the cloud management solutions are not fully aligned. Additionally, the routing configuration within Palo Alto Networks NG Firewalls is confusing and not logically structured like traditional network equipment, which is challenging, particularly for those accustomed to Cisco's networking logic.

I have been working with Palo Alto Networks NG Firewalls since the second half of 2020, so approximately three years.

Overall, I find the product to be stable with minimal crashes or access issues, comparable to Check Point, but slightly better.

Palo Alto Networks NG Firewalls is scalable but starts at a high price range, which may not be affordable for smaller companies.

Customer service and technical support for Palo Alto Networks is great. They are responsive and helpful.

Neutral

The installation process generally takes about an hour, depending on the complexity of the configuration. An easy setup could be completed in approximately two hours.

Two people are usually involved in the deployment: one technician for installing on-site and conducting basic configuration, and one remote engineer for detailed configuration.

Palo Alto Networks NG Firewalls is the most expensive solution without discussion, which often makes it less competitive for small companies. Management tools like Panorama significantly add to the cost, making it affordable primarily for larger enterprises.

Palo Alto Networks offers an excellent range of products and I generally recommend them unless the price is a concern. They lead the market in complex solutions, though Check Point is a close competitor in NGFWs. The routing aspects could be more logically structured. Overall, I rate Palo Alto Networks NG Firewalls ten out of ten because they are unmatched in their function.

Hybrid Cloud

Other

We use Palo Alto Networks NG Firewalls for visibility and protection of our network.

Our environment primarily uses Windows, and Palo Alto Networks Next-Generation Firewalls can enhance our security integration.

The firewalls help protect our servers, but we do not have a highly sophisticated data center setup.

The most valuable aspect of Palo Alto Networks NG Firewalls is the performance.

The support needs improvement, as the quality of the responses is not great and sometimes solutions take a long time. Configurations related to different operating systems can be complex, and we have encountered issues with Linux systems.

The internal authentication method for connecting to the firewall's internet access requires an SSL certificate. However, the configuration process is complex and currently incompatible with certain operating systems, such as Linux.

I have been working with Palo Alto Networks NG Firewalls for nearly eight years.

Palo Alto Networks NG Firewalls are stable; we have only faced downtime once in the past two years due to a primary firewall maintenance issue where the standby did not come up.

We have not needed to scale up or down, as the solution we have is currently sufficient.

Support is a challenge as the response time is long, and the quality of responses could be improved.

Neutral

I have used Juniper previously and found its security features superior. However, I prefer Palo Alto for its broader range of features and more competitive pricing.

The setup process is somewhat complex, requiring a couple of days. Fine-tuning and configuring SSL authentications internally is difficult.

Palo Alto Networks NG Firewalls are more expensive than Cisco firewalls, but slightly less expensive than Juniper firewalls.

I evaluated Cisco and Juniper before choosing Palo Alto Networks NG Firewalls.

I would rate Palo Alto Networks NG Firewalls seven out of ten.

The maintenance of Palo Alto Networks NG Firewalls is easy.

We implemented Palo Alto Networks NG Firewalls as our intrusion prevention system to filter layer seven traffic and perform SSL inspection through deep packet inspection at the application layer.

We use Palo Alto Networks NG Firewalls for layer three packet filtering of east-west and north-south traffic and layer seven filtering through web filtering.

Palo Alto Networks NG Firewalls include Panorama, a unified platform providing a complete overview of our security features. This centralized management tool offers a single pane of glass for monitoring all security touchpoints through metrics, streamlining our network infrastructure protection. As a crucial component of our perimeter defence strategy, Panorama is integral to our overall network security priorities.

The machine learning feature embedded in Palo Alto Networks NG Firewalls for inline, real-time attack prevention is essential for proactive incident response and mitigation.

We realized their advantages within the first month of deploying Palo Alto Networks NG Firewalls. While those unfamiliar with the firewall's capabilities may not immediately recognize the benefits, those with a deeper understanding have seen positive results almost instantly.

Palo Alto Networks offers a diverse range of firewall models, catering to small offices, entry-level needs, and large data centres. This consistency in their product line allows them to effectively secure organizations of all sizes, from small to medium-sized businesses to extensive data centres. Considering their out-of-the-box protection across different work environments, I would give Palo Alto Networks a rating of nine out of ten for consistency.

Palo Alto Networks NG Firewalls have helped our organization reduce downtime by safeguarding against DDoS attacks, phishing attempts, and other malicious threats. These firewalls effectively prevent unauthorized access to our enterprise infrastructure.

The most valuable features are IPS and stateful inspection. Stateful inspection simplifies firewall management by automatically allowing return traffic for established connections, eliminating the need to create separate policies for inbound and outbound traffic within the same session.

Palo Alto Networks Next-Generation Firewalls are expensive and could become more competitive with reduced costs.

I have been using Palo Alto Networks NG Firewalls for five years.

Palo Alto Networks NG Firewalls are highly stable.

Since Palo Alto Networks NG Firewalls are physical hardware devices, they offer scalability but are limited by the hardware's capabilities.

The technical support of Palo Alto is fantastic.

Positive

I previously used Cisco ASA firewalls but switched to Palo Alto Networks NG Firewalls because Cisco ASA does not offer next-generation firewall capabilities like stateful.

The deployment was straightforward, even though we received some assistance from Palo Alto engineers.

The deployment was completed in five days. Prior to execution, we planned the integration of the firewall into our infrastructure. This high-level plan involved identifying the network, provisioning the firewall, connecting network cables, configuring the firewall, and conducting tests.

Our logs indicate a significant number of attempted unauthorized access or attacks on our infrastructure, which the Palo Alto NG Firewalls have successfully blocked. Given this evidence of the firewall's effectiveness in protecting our systems, I believe it demonstrates a strong return on investment.

Palo Alto Networks NG Firewalls are expensive.

I would rate Palo Alto Networks NG Firewalls ten out of ten.

Even though Palo Alto might be more expensive, I would always recommend it because you typically get better equipment for your investment.

Occasionally, we need to upgrade the operating system, which is considered maintenance. Although we have a high availability setup with two firewalls, an active one and a backup, they typically run continuously without issues.

We have 1,000 users across multiple locations that utilize Palo Alto Networks NG Firewalls in our organization.

I recommend always having a proper plan and considering not only the cost but also the technical benefits in terms of the next-generation firewall features offered by Palo Alto.

On-premises

We are managing services for our customers. I am mostly dedicated to Palo Alto.

I have had a very good experience with Palo Alto firewalls and Panorama. We have used Palo Alto firewalls for multiple use cases. We have used them at the perimeter as well as in the data center. I have experience in 5000 series, 7000 series, and 3000 series. I have worked with most of them.

We are able to meet 99% of the requirements of our customers. It is a good solution to have in the data center as well as at the perimeter.

Palo Alto Networks NG Firewalls provide a unified platform that natively integrates all security capabilities.

Machine learning as well as AI have been added. About 99% of new malware or signatures can be blocked with machine learning and AI. Rather than sending these new signatures to a verifier, they are automatically blocked by leveraging machine learning and AI.

Palo Alto has different types of series. They have 800, 400, and 200 series for small branches, and then they have 1000 series for smaller branches. For a data center, they have the 3000 series and 5000 series. For big ISPs, they have 7000 series where we can also do virtualization. We can have separation and even multi-tenancy at the core level, which is something amazing. Also, we can share policies, objects, and virtual systems. That helps the network infrastructure security engineer to achieve their use cases. It provides a fast and amazing experience.

There is a reduction in downtime because it is a stable firewall. It helps our customers to have a stable network. Most of our customers have high availability. If the customers configure it well, they will have a good experience. They will not have any data loss.

It has a very good user interface. The documentation is also very good. It is very useful for monitoring things.

The integration with RADIUS, LDAP, and other servers also works very well. API integration is also very nice. The way security policies can be configured is also amazing. The Quality of Service can also be achieved. All these things are nice.

Palo Alto is a leader in the market when it comes to performance, virtualization, and the cloud platform. It is working well. In my opinion, nothing can be added at this time. However, when it comes to the cost, Palo Alto firewalls are the most expensive.

I have been working with this solution for about seven years.

It is stable. Almost everything is fine.

It is fairly scalable. Especially when you have a firewall as a service, scalability is good. Even if it is a physical firewall, a customer can simply do a tech refresh.

Their technical support is good, but they take time. Most of the time, they are occupied. We experience delays in their replies.

Neutral

I have experience with other products such as Cisco ASA, Cisco Firepower, Fortinet FortiGate, and Fortinet FortiManager, but I have mainly worked with Palo Alto firewalls.

The main competitor is Fortinet FortiGate. Palo Alto firewalls provide more control over features and give you more capabilities for control. The administrator has the required visibility to do that. Fortinet seems to have a UTM solution with multiple network and security features comprising Fortinet FortiGate, FortiSwitch, FortiAnalyzer, and FortiManager.

Our customers deploy these firewalls in the cloud as well as on-premises. On-prem, it is straightforward, but on the cloud, you require a different design.

In terms of the implementation strategy, we need to size the firewall in the correct way. For maintenance, there should be a support contract for each and every security solution, especially for the firewalls because they are very critical.

I am not from presales or sales, but as a brand, Palo Alto is more expensive than other firewalls. They have different licenses. As a customer, if you know what you are going to purchase exactly, you will get a good price. The price will vary based on whether you are going for the 7000 series, 5000 series, or 3000 series.

Overall, the price makes sense because you have IoT security, antivirus security, DNS security, anti-spyware, and many other features. They have a solution to implement SASE. So, it is very expandable for new challenges, and the return on investment can be achieved simply.

I would rate Palo Alto Networks NG Firewalls a nine out of ten.