Cloudflare One vs Prisma Access by Palo Alto Networks comparison

Cloudflare and Palo Alto Networks are both solutions in the Secure Access Service Edge (SASE) category. Cloudflare is ranked #7 with an average rating of 8.7, while Palo Alto Networks is ranked #1 with an average rating of 8.0. Cloudflare holds a 8.3% mindshare in SASE, compared to Palo Alto Networks’s 20.6% mindshare. Additionally, 100% of Cloudflare users are willing to recommend the solution, compared to 92% of Palo Alto Networks users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 12, 2024

Prisma Access by Palo Alto Networks and Cloudflare One are strong competitors in the cybersecurity space, each offering unique advantages based on user priorities. Prisma Access holds an edge with its comprehensive security features, while Cloudflare One is preferred for its simplicity and affordability.

Features:Prisma Access offers comprehensive monitoring, zero-trust capabilities, and integration with platforms like Cortex Data Lake, enhancing security and visibility. It supports features seen in Palo Alto's Next-Generation Firewall, ensuring a high level of security. Cloudflare One is appreciated for its simplicity and integrated functionalities such as DDoS protection, robust CDN performance, and user-friendly management, which align with the needs of businesses seeking straightforward, effective solutions.

Room for Improvement:Prisma Access faces challenges with its complex initial setup and inconsistent third-party integration, with users noting issues in support model and cross-platform compatibility that could lead to latency in specific regions. Cloudflare One could enhance its onboarding processes, pricing transparency, and dashboard intuitiveness, reflecting its need for operational refinements to better cater to enterprise users.

Ease of Deployment and Customer Service:Prisma Access supports various deployment models, including hybrid and private clouds, offering flexibility but occasionally experiencing delays in support response times. Cloudflare One, primarily deployed on public clouds, is extolled for ease of use and generally friendly support, although initial setup challenges can occur. Both are recognized for their quality of technical support, though improvements in response efficiency would be beneficial.

Pricing and ROI:Prisma Access is often viewed as expensive due to its extensive security features, yet users perceive it as delivering good ROI. Its escalating costs with added functionalities are acknowledged. Cloudflare One provides more affordable pricing, advantageous for budget-conscious enterprises, and is typically considered a good value considering its protection level. Each solution presents value relative to its pricing strategy, with Prisma Access offering comprehensive features at a higher price point, while Cloudflare One maintains a budget-friendly, direct model.

To learn more, read our detailed Cloudflare One vs. Prisma Access by Palo Alto Networks Report (Updated: December 2024).

Buyer's Guide

Cloudflare One vs. Prisma Access by Palo Alto Networks

December 2024

Download the complete report

Helped 830,596 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

iboss

Mindshare comparison

As of January 2025, in the Secure Access Service Edge (SASE) category, the mindshare of iboss is 1.7%, up from 1.6% compared to the previous year. The mindshare of Cloudflare One is 8.3%, up from 6.6% compared to the previous year. The mindshare of Prisma Access by Palo Alto Networks is 20.6%, down from 22.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Secure Access Service Edge (SASE)

Featured Reviews

Jack Hamm

Vice President of Security and Engineering at a retailer with 10,001+ employees

We experienced benefits immediately but the report generation is lagging

iboss excels on the networking side but lags slightly behind competitors like Zscaler and Netskope in terms of security feature parity. I'd like to see them accelerate development on the security side, particularly around data loss prevention. Using iboss for DLP instead of traditional endpoint solutions is preferable, but its current feature set requires some clunky workarounds. I'd also like to see better integration of DLP into the platform. Additionally, while it's improving, reporting can be slow at times. This is problematic when generating reports for executives who expect them immediately. I'd like to see further improvements in reporting speed and efficiency.

Read full review

Leandro Soares Costa

Coordinator of the Architecture Security Team at TOTVS

Replaces traditional VPN and enables endpoint exposition

It's the endpoint exposition. We don't need to expose our VPN server to the internet and need a zero-test solution. I can apply some conditional access to the endpoint that's connecting to our network to check their security policies or the security condition of their workstation. Once the workstation is trying to connect to my internal network, then I would like to check the discrete condition of these endpoints that are trying to access my internal network. We created some conditional access. We have CrowdStrike, to check if the CrowdStrike is installed, to check if it's updated, and to check for Windows updates. We created some conditional policies to check it.

Read full review

Manindar Patil

Senior Presales at PwC

Allows secure access to all applications and resources from any location but needs a simpler dashboard

Prisma Access allows secure access to all applications and resources from any location. This is an essential advantage for maintaining consistent security across various platforms and remote connections. The centralized security that ensures policies follow users is also a core feature, promoting zero trust, a necessary security model in today's market.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"From a use-case scenario, what I like the most is the plug-in. I like the fact that we can do the filtering of these devices offsite independent of the network they are connected to, and we do not have to have traffic coming back inside our network."

"Valuable features: Within the filter: Controls (Web categories, applications, and Allow/Block list) and Network (local Subnets). Within the reporter: Logs (Event Log) and Reports."

"Its initial setup was straightforward."

"Technical support is pretty sharp and very responsive."

"Content filtering is the most useful feature of iboss."

"iboss is easy to use despite its complexity. Multiple engineers manage it, but it's significantly more straightforward to administer than traditional VPNs and web proxies."

"We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times."

"iboss has significantly lowered the number of security incidents. It is crazy how much it blocks and how much it is aware of the outside danger."

More iboss pros

"The capabilities of the software are strong enough for me to do what it's supposed to do. For me, we don't need to do a lot of configuration on our site. We just enable it and monitor it."

"Cloudflare, in my opinion, was easy to implement."

"For Cloudflare Access, I am using the free plan...The most valuable feature is their protection."

"The best feature is rate limiting. If I'm expecting 500 visits per hour, Cloudflare will limit the requests if I suddenly get 50,000."

"The solution has different options that can be used to differentiate DDoS attacks."

"Cloudflare DDoS is better than its competitors for its security, deployment, and scalability."

"It's the endpoint exposition. We don't need to expose our VPN server to the internet and need a zero-test solution. I can apply some conditional access to the endpoint that's connecting to our network to check their security policies or the security condition of their workstation. Once the workstation is trying to connect to my internal network, then I would like to check the discrete condition of these endpoints that are trying to access my internal network. We created some conditional access. We have CrowdStrike, to check if the CrowdStrike is installed, to check if it's updated, and to check for Windows updates. We created some conditional policies to check it."

"Cloudflare DDoS mitigates DDoS attacks."

More Cloudflare One pros

"Panorama provides centralized management capabilities for all our firewalls and locations so that we can manage different data centers through a single device, a very valuable feature. We don't have to log into various devices to oversee them individually."

"Prisma Access protects all app traffic, so that users can gain access to all apps and that's very important because we need to be able to access everything. It also allows us to access non-web apps; anything internal that we need access to, we can access."

"You have the ability to create your own expressions for your data. Palo Alto understands that DLP is not the same for all consumers. You might have a particular need to fulfill, and they give you the opportunity to create a custom expression to match the specific format that you have. For a confidential file property that you have in your files, you can add a metadata field. It gives you that opportunity to create that."

"The most valuable features are ZTNA 2.0, CASB, Threat Prevention, and Autonomous Digital Experience Management (ADAM)."

"The initial setup is very straightforward."

"We have an application called ADEM that helps us troubleshoot network-related issues. It helps us to isolate an issue whether it is on the ISP level, endpoint level, or system access level."

"It's quite reliable and performs well for users."

"It supports auto-scaling for mobile users. It auto-scales depending on the mobile user traffic. For example, if 1,000 people are working from home today, and tomorrow, the number increases to 2,000, it is not going to be an issue."

More Prisma Access by Palo Alto Networks pros

Cons

"Their on-premise hardware's network interface is capped at one gigabit, which is sort of a problem. If you stand a filter up where all traffic flows through that, according to them, in order to go above a gigabit, you have to have multiple devices, which in today's IT seems a little bit silly. They could easily put in an SFP port into their device that could accommodate 10 gigs or at least offer a box."

"To scale up, a new iboss Node Blade Chassis must be purchased."

"Fold that in with the risk intelligence they're getting from all of the different subscriptions they are a part of. Now, these security companies subscribe to things like emerging threats, databases, etc. You can fold all this intelligence to decide what's happening on an endpoint. I would love to see them start moving into that space. That would compete directly with Microsoft. Maybe that's why they haven't. Having that ability native within the solution would be great. The other area in which I would love to see improvement is more detailed descriptions of why they block websites."

"The reporting feature needs improvement."

"Sometimes when you call in support, you get someone who is just following a sheet. It feels like a runaround. You feel that you are running into that support wall."

"The reporting feature needs improvement. It doesn't give you the expected results. It is quite difficult to get the specific reports needed, and it is not as intuitive as the rest of the platform."

"The area I would like to see improvement in is the ability with in the reporter to navigate directly to the content the user is traversing. It is kind of there, but it's not perfect. Quite frequently, I receive links that lead me to pages with error messages."

"Sometimes the agent stops working in iboss, and we have to reinstall the agent."

More iboss cons

"The response time for support must be reduced."

"Our subscription plan for the solution has a limitation of bot signatures."

"The free plan has limitations. For example, I can only set up three rules, and the application firewall is unavailable."

"When there are any dynamic changes in complex applications, the tool takes a lot of time, making its analytics-related area a major matter of concern where improvements are needed."

"For the topic of improvement, providing some training material is one of my suggestions."

"The pricing is an area that can be improved. Pricing, as far as I recall, was the source of our problems."

"Cloudflare DDoS has poor technical support."

"Operating and tuning the product is difficult."

More Cloudflare One cons

"When it comes to the VPN, it uses the global protect VPN functionality to connect remotely, but it has a feature limitation for assigning multiple IP sub-links to different user groups. It would be much better if we are able to assign the current IP blocks for the sub-links based on the user groups."

"The frequency of updates could be reduced."

"The documentation is generally good, but they could provide a more detailed description of all the configuration steps. I have to search for information or call support. Palo Alto could add more knowledge base articles about configuration with screenshots and walkthroughs. That would be helpful. When configuring a product, you want to see examples of how it is done."

"Dependencies of applications sometimes is a bit confusing."

"I would like to see support for custom applications."

"Palo Alto Prisma 10 came out over a year ago. Palo Alto added this identity management feature. The legacy way Palo Alto selected which user is sitting on an IP address it passes through has been clunky."

"I would like to see better pricing and an easier logging process. Also, if there was a way to log a global log, everything could go onto the system. It would be better if there was a third log, otherwise one would have to do everything manually."

"They automatically update and they should give us time to fully understand what they're updating so that we can make sure it doesn't impact production."

More Prisma Access by Palo Alto Networks cons

Pricing and Cost Advice

"It is probably in line with other solutions, but I do not deal with the financial side."

"It is expensive compared to one of its competitors."

"We have not priced the solution recently, but they were competitive with other vendors in the past."

"The overall pricing for iboss is very competitive and transparent."

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."

"The prices are slightly expensive."

"My company has to make yearly payments towards the licensing costs attached to the solution. There are no hidden charges apart from the licensing costs of the solution."

"The solution's pricing lacks transparency."

"Cloudflare Zero Trust Platform's pricing is good."

"The solution is not that expensive."

"The price tag is no longer $200,000, but rather $300,000 to $400,000. It's twice."

"The pricing is somewhere in the middle. I would rate the pricing a seven out of ten."

"The pricing of the solution is cheap. The licensing cost is also very low. I rate the cost and pricing a three out of ten."

"The pricing for this solution is on the higher end."

"It is pretty expensive. We have to balance the cost of some features. They need to work on some of the services and products, price-wise."

"Actually the solution is very expensive. I don't know the particulars since the purchasing team dealt with it."

"Prisma is in the middle of the road. It's not the most expensive, but it's not the cheapest. There aren't any additional costs, to my knowledge. I know they have some extra modules, but we didn't use them."

"I would advise choosing your options according to your company's needs. Just go for what you want and do not pay for anything extra in terms of licensing. You need to determine how much bandwidth is required in your company network, and according to that, you should pay for the license. The mobile user license is based on the number of users who are going to use the VPN solution. You need to determine how many mobile users you are going to have in your network, and you should pay according to that. There are no other costs in addition to licensing, but if you go for the consultant services of Palo Alto networks to deliver the solution for you, then you need to pay something extra. That is not a part of licensing."

"The solution is expensive."

"The pricing is very friendly. It's not confusing to figure out your workload and how much you'd be paying for the solution."

"This is not an expensive product and everything is included with one license."

More Prisma Access by Palo Alto Networks pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Secure Access Service Edge (SASE) solutions are best for your needs.

See recommendations

830,596 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Manufacturing Company

Government

Computer Software Company

16%

Financial Services Firm

10%

Comms Service Provider

Manufacturing Company

Computer Software Company

14%

Manufacturing Company

13%

Financial Services Firm

12%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about iboss?

Content filtering is the most useful feature of iboss.

See all answers

What needs improvement with iboss?

I have the same complaint about them that I have about other software companies. Sometimes when you call in support, ...

See all answers

What is your primary use case for iboss?

We are a PreK-12 public school district, and we use iboss to filter internet content for our students at home and sta...

See all answers

What do you like most about Cloudflare Access?

The tool also offers good scalability, and the dashboard, along with real-time analytics, is very good.

See all answers

What is your experience regarding pricing and costs for Cloudflare Access?

The price of Cloudflare Access is the same as compared to Akamai, but I get better performance from Cloudflare. My co...

See all answers

What needs improvement with Cloudflare Access?

Cloudflare Access has strong integration with Microsoft, among other platforms. However, when it comes to Kaspersky, ...

See all answers

What is the better solution - Prisma Access or Zscaler Private Access?

We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...

See all answers

What do you like most about Prisma Access by Palo Alto Networks?

The most valuable features of the solution are in the areas of the secure remote access it provides while also being ...

See all answers

What is your experience regarding pricing and costs for Prisma Access by Palo Alto Networks?

The pricing is on the higher side, rating it around eight to nine out of ten. While it is justified for its value, th...

See all answers

Comparisons

Zscaler Internet Access vs iboss

Compared 18% of the time

Cisco Umbrella vs iboss

Compared 15% of the time

Netskope vs iboss

Compared 10% of the time

Zscaler Zero Trust Exchange Platform vs iboss

Compared 10% of the time

Cato SASE Cloud Platform vs iboss

Compared 8% of the time

More iboss Competitors

Twingate vs Cloudflare One

Compared 12% of the time

AWS Shield vs Cloudflare One

Compared 8% of the time

Cato SASE Cloud Platform vs Cloudflare One

Compared 6% of the time

Zscaler Zero Trust Exchange Platform vs Cloudflare One

Compared 4% of the time

Prolexic vs Cloudflare One

Compared 4% of the time

More Cloudflare One Competitors

Cisco Umbrella vs Prisma Access by Palo Alto Networks

Compared 11% of the time

Netskope vs Prisma Access by Palo Alto Networks

Compared 11% of the time

Zscaler Internet Access vs Prisma Access by Palo Alto Networks

Compared 8% of the time

FortiSASE vs Prisma Access by Palo Alto Networks

Compared 8% of the time

Prisma SD-WAN vs Prisma Access by Palo Alto Networks

Compared 4% of the time

More Prisma Access by Palo Alto Networks Competitors

Product Reports

Buyer's Guide

iboss

January 2025

Download iboss product report

Buyer's Guide

Cloudflare One

January 2025

Download Cloudflare One product report

Buyer's Guide

Prisma Access by Palo Alto Networks

December 2024

Prisma Access by Palo Alto Networks report

Download Prisma Access by Palo Alto Networks product report

Also Known As

iBoss Cloud Platform

Cloudflare Area 1 Email Security, Cloudflare Bot Management, Cloudflare Gateway, Cloudflare Zero Trust Platform, Cloudflare DDoS, Cloudflare SASE & SSE Platform

Palo Alto Networks Prisma Access, Prisma Access, GlobalProtect, Palo Alto GlobalProtect Mobile Security Manager, Prisma SaaS by Palo Alto Networks, Prisma Access

Learn More

iboss

Cloudflare

Palo Alto Networks

Overview

iboss offers a comprehensive security platform designed for diverse use cases such as web filtering, data loss protection, corporate proxy services, and URL filtering.

iboss integrates advanced features to address dynamic security needs, leveraging its strength in SASE, ZTNA, AI initiatives, and cloud integration, while ensuring seamless operations for remote work. It excels in historical forensics, malware protection, and flexible cloud deployments. Users benefit from comprehensive traffic scanning, robust malware detection, and PaaS capabilities that reduce hardware management. An intuitive admin console ensures efficient management with content filtering and low false positives. SSL decryption enhances security, while DLP protects data in AI conversations. Deployment is rapid and scalable, allowing effortless integration with emerging technologies.

What features does iboss offer?

Granular Web Filtering: Provides precise control over web content access.
Traffic Scanning: Monitors data through multiple ports for security breaches.
Malware Detection: Ensures superior protection against malware threats.
PaaS Capabilities: Eliminates need for hardware management.
SSL Decryption: Enhances data protection by decrypting secure connections.
DLP Capabilities: Safeguards data during AI interactions.

What benefits and ROI should users consider?

Scalability: Adapts quickly to growing demands and emerging tech integration.
Rapid Deployment: Reduces time to implement security measures.
User-Friendly Admin Console: Facilitates efficient operations management.
Low False Positives: Increases accuracy of threat detection systems.

iboss finds significant application in sectors such as education, where web filtering for K-12 is crucial, and in corporate environments requiring robust proxy services and URL filtering for network security. Its adaptability is essential in scenarios demanding flexible, decentralized security frameworks, particularly for remote work setups.

Cloudflare One is a single-vendor Secure Access Service Edge (SASE) platform that enables Zero Trust security and any-to-any connectivity across enterprise applications, users, devices, and networks. Cloudflare One helps organizations simplify, modernize, and consolidate their IT architecture by converging security and networking services on our single global network and control plane.

Many organizations start by adopting our Security Service Edge (SSE) services — like ZTNA, SWG, CASB, and DLP — to reduce their attack surface, stop threats like phishing and ransomware, protect data, and apply identity-based Zero Trust verification across web, SaaS, and private app environments. Others prioritize simplifying network connectivity across offices, data centers, and cloud environments with our WANaaS.

Every service is available for customers to run in every location across Cloudflare’s global network, which today spans 330+ cities in 120+ countries, so you can scale connectivity with fast, consistent protections everywhere.

Prisma Access by Palo Alto Networks provides consistent security for all users and applications across your remote networks. Prisma Access grants users safe access to the cloud and data center applications and the internet as well. In addition, the solution combines all of your security and networking capabilities into a single cloud-delivered platform, enabling flexible hybrid workforces.

Prisma Access can be managed two ways:

Cloud Managed
Panorama Managed

Prisma Access delivers both networking and security services, including:

SD-WAN
VPN
Zero Trust network access (ZTNA)
Quality of service (QoS)
Clean Pipe
Firewall as a service (FWaaS)
DNS Security
Threat Prevention
Cloud secure web gateway (SWG)
Data loss prevention (DLP)
Cloud access security broker (CASB)

Prisma Access by Palo Alto Networks Features

Prisma Access by Palo Alto Networks has many valuable key features including: App-ID, User-ID, Device-ID, SSL Decryption, Dynamic User Group (DUG) Monitoring, AI/ML-Based Detection, IoT Security, Reporting, URL Filtering, Enterprise Data Loss Prevention (DLP), Digital Experience Monitoring (DEM)*, Logging, Policy Automation, Intrusion Prevention System (IPS), and many more.

Prisma Access by Palo Alto Networks Benefits

Some of the benefits of using Prisma Access by Palo Alto Networks include:

Security: Prisma Access gives you consistent security to protect against cyberattacks, with enforcement of policy at every location. By implementing Prisma Access, you also gain protection that works to prevent known and unknown malware, exploits, credential theft, command and control, and many other attack vectors across all ports and protocols.
Global connectivity: Prisma Access provides global coverage through use of its connectivity layer.
Scalability: With Prisma Access, scaling is automatically managed and is scalable, flexible, and agile.
Instant deployment: Deployment is fast, eliminating wasted time that may otherwise be associated with setting up a solution, operating it, or shipping hardware in order to get started.

Reviews from Real Users

Below are some reviews and helpful feedback written by Microsoft Azure Synapse Analytics

users who are currently using the solution.

PeerSpot user Partha D., Global Network Tech Lead at a computer software company, speaks about his experience using the product, saying, "It protects all app traffic so that users can gain access to all apps. Unlike other solutions that only work from ports 80 and 443, which are predominantly for web traffic, Prisma Access covers all protocols and works on all traffic patterns... The most sophisticated attacks can arise from sources that are not behind 80/443."

Tejas J., a Sr. Cloud Security Architect at a computer software company, mentions that "it is geographically dispersed, and it sits on top of Google and AWS platforms. Therefore, you don't face the standard issues, such as latency or bandwidth issues, that you usually face in the case of on-prem data centers.”

Another PeerSpot reviewer, Max I., Associate Director at Cognizant, comments that "Security is absolutely spot-on, really top-notch. It's the result of all the components that come together, such as the HIP [Host Information Profile] and components like Forcepoint, providing end-user content inspection, and antivirus. It incorporates DLP features and that's fantastic because Prisma Access makes sure that all of the essential prerequisites are in place before a user can log in or can be tunneled into."

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

23andMe

Concord Hospital, State of Colorado, Essilor International, RheinLand Versicherungsgruppe, University of Westminster, Universidade Nove de Julho, SPAR Austria, CAME Group, ZipRealty, Greenhill & Co., IKT Agder, Aviva Stadium, Animal Logic, Management & Training Corporation, Brigham Young University Hawaii, School District of Chilliwack

Buyer's Guide

Cloudflare One vs. Prisma Access by Palo Alto Networks

December 2024

Free Report: Cloudflare One vs. Prisma Access by Palo Alto Networks

Find out what your peers are saying about Cloudflare One vs. Prisma Access by Palo Alto Networks and other solutions. Updated: December 2024.

DOWNLOAD NOW

830,596 professionals have used our research since 2012.

See our Cloudflare One vs. Prisma Access by Palo Alto Networks report.

See our list of best Secure Access Service Edge (SASE) vendors, best Secure Web Gateways (SWG) vendors, and best Cloud Access Security Brokers (CASB) vendors.

We monitor all Secure Access Service Edge (SASE) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.