Prisma SD-WAN Reviews

My primary use case for Prisma SD-WAN is for companies with multiple sites distributed abroad. These companies need a centralized SD-WAN infrastructure capable of processing traffic at Layer 7. This infrastructure is particularly beneficial for organizations that require high-quality network traffic control, such as video and audio distribution, and providing support services via internet phones.

Prisma SD-WAN offers capabilities such as path selection based on Layer 7 attributes and application quality of service at the application level. It provides less than a second detection of failures to redirect traffic to other links. The infrastructure relies on SD-WAN gateway appliances, which can be physical or virtual, requiring zero-touch provisioning operations. This makes onboarding a remote site easy with near-zero system activities needed at the remote site. By reducing the need for expensive internet connections, Prisma SD-WAN allows customers to achieve cost savings.

For general use cases, we have used it to create an SD-WAN between different physical locations and for our remote staff who access via VPNs and the Prisma environment.

Our team consists of analysts or engineers, as we are small.

The best feature with Prisma SD-WAN for us is that when we can figure out the documentation and set it up properly, it works exactly as it should. The biggest issue we've had is that the documentation on their site is just bad.

Besides that it works properly when figured out, the biggest benefit for us is that we've seen a reduction in incidents.

For Prisma SD-WAN, we use it as an intersite access for branches and also use the cloud proxy. We use Prisma Access for remote users, replacing our traditional PPA. We also consider the cloud to be part of the RN or remote networks.

Prisma centralizes everything, allowing us to remove NetFoundry and replace it with Prisma SD-WAN. It simplifies the onboarding process for users and allows us to replace our traditional connectivity solutions.

Prisma SD-WAN is the specific solution we deal with.

We're using Prisma SD-WAN for connectivity to remote sites, specifically bypassing some of the expensive MPLS traditional setups by relying on dedicated internet access to create that full mesh for the remote sites connecting to data centers.

We have multiple data centers and multiple sites. I work for an enterprise size company with a few locations and a lot of remote sites. We have about 70 remote sites and four data centers.

Some of the best features with the Prisma SD-WAN are intelligent routing, dynamic path selection, best path selection, and forward error correction.

The security integrations of the Prisma SD-WAN have benefited our network infrastructure because we typically tie it to Palo Alto, which integrates effectively regarding templates for security policy, routing, and application routing. They integrate seamlessly from one vendor perspective since we have Palo Alto firewalls including the VM series, firewalls in the cloud spaces, and on-premises with virtual IOS for the SD-WAN appliances.

We used to have Panorama. Panorama is the centralized management platform for all the firewalls. In terms of centralized configuration management and troubleshooting, all the firewalls in the network are managed. 

Prisma is one step ahead, and it is a one-stop solution. Firstly, we used a different type of global coding VPN in our environment. For example, we use XYZ VPN to connect to the production network. We were using four to five types of VPNs. Prisma is the global VPN solution that it offers. They connect to Prisma via a single gateway, even maintaining security and segmentation. It's the centralized solution for managing all the configuration and VPN solutions. We have service connections to our data centers in AWS and Azure. If there are any workloads in AWS or Azure, users don't have specific connectivity to AWS and Azure nowadays. They can access all the required applications from Prisma. 

When you log in to the Palo Alto hub, a website where they have all the cloud-hosted portfolios, you will see many custom applications they are hosting in the cloud along with Prisma. For example, they have AIOps in the ignition firewall feature. 

Once you integrate that with Prisma, you have a centralized view of your network's security-related services. For example, you can see which firewalls have the antivirus profile enabled and which firewalls are missing this profile. You get a centralized view in a single dashboard. Additionally, for individual firewalls, whether physical servers or cloud-based firewalls, you must manage all these security policies, NAT policies, interfaces, etc. In Prisma, you manage everything in a single dashboard or configuration. Based on the service connection, you modify the route to have granular control of all the networks, making it quite useful to manage everything in a single dashboard.

We use Palo Alto Prisma SD-WAN to stay connected between branches and headquarters. It's very well developed, easy to manage, and very secure for us. Without Prisma SD-WAN, we would rely solely on the firewall for VPN, which is not as beneficial as using software-defined WAN. 

The dynamic routing in Prisma SD-WAN is high-speed and valuable because it quickly adjusts, so users do not realize the link is down. The traffic shaping feature is also handy. In branches with poor internet connections, traffic shaping allows us to restrict and manage bandwidth effectively. This ensures no single user can consume all the bandwidth, and it reserves equal parts of the link for all users. For example, we can share the link equally in a small office with ten people. Prisma SD-WAN is highly effective in handling network failovers and ensuring business continuity. It includes redundancy, failover capabilities, and extensive monitoring tools. If one customer experiences an attack, updates are provided to all other customers to prevent similar threats.