Try our new research platform with insights from 80,000+ expert users
Palo Alto Networks NG Firewalls Logo

Palo Alto Networks NG Firewalls pros and cons

Vendor: Palo Alto Networks
4.3 out of 5
1,654 followers
Post review

Pros & Cons summary

Palo Alto Networks NG Firewalls offer robust threat prevention with application-based firewalls, URL filtering, and real-time attack prevention using machine learning. They enhance network visibility, manageability, and integration but have concerns regarding pricing, technical support, and scalability. Their implementation is often complex, with challenges in handling traffic and session connections, and require improved data loss prevention. Despite these, they ensure reliable performance and security across sectors, providing a solid return on investment.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Palo Alto Networks NG Firewalls provide scalability and are highly reliable, making them a top choice for enterprise security needs.
The most valuable features include threat prevention, WildFire functionality, and the ability to perform real-time attack prevention using embedded machine learning.
They offer advanced application control, which allows identification by application rather than just port numbers, enhancing network security.
Palo Alto Networks NG Firewalls' integration with Active Directory and other security tools provides a comprehensive security platform that eliminates security holes.
They possess a robust architecture that combines intrusion prevention, application inspection, and sandboxing, ensuring excellent threat detection capabilities.

CONS

Pricing of Palo Alto Networks NG Firewalls is very high, making it less competitive compared to other firewall companies offering similar features.
Technical support requires improvement in terms of response times and availability, particularly in regions where support is handled through third-party partners.
Reporting tools and capabilities are lacking and could be greatly improved for more advanced and clearer reporting.
Data loss prevention features are basic and not suitable for enterprise-level needs, requiring enhancements.
Scalability of Palo Alto Networks NG Firewalls is an area of concern, with limitations on session numbers requiring hardware upgrades for increased capacity.
 

Palo Alto Networks NG Firewalls Pros review quotes

AdamBrenner - PeerSpot reviewer
Oct 6, 2020
This is arguably the best security protection that you can buy.
Read full review
Ali Mohiuddin - PeerSpot reviewer
Jul 17, 2022
One of the key features for us is product stability. We are a bank, so we require 24/7 service.
Read full review
John Sayer - PeerSpot reviewer
Nov 21, 2022
One of the simple features I like about Palo Alto firewalls is that it's extremely easy to find out what's happening in the network. The reporting is phenomenal, and it's easy to find which threats have been detected and what traffic is going through the box. When a customer notices something is wrong, you can quickly check the amount of traffic going through the firewall around that time. If there is anything out of the ordinary, you can decide it needs to be investigated further.
Read full review
Buyer's Guide
Palo Alto Networks NG Firewalls
December 2024
Free Report: Palo Alto Networks NG Firewalls Reviews and More
Learn what your peers think about Palo Alto Networks NG Firewalls. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
DOWNLOAD NOW
824,053 professionals have used our research since 2012.
GH
Sep 23, 2021
When we put it on the border, it was blocking everything that we were getting ahead of time, and we weren't getting any hits. This includes URL filtering, spam prevention, and anti-virus.
Read full review
Simon Webster - PeerSpot reviewer
Aug 16, 2022
The WildFire reporting and Cortex XDR platform have huge infrastructures in the cloud that secures the network against threats. So, we have the potential on the system, specifically for users, where we take care of this since the user is the most dangerous. We get reports back from WildFire on a minute-by-minute basis, rather than a daily or weekly update like I used to with different AV vendors. These features can detect viruses and malware more quickly, which is super important.
Read full review
Gabriel Franco - PeerSpot reviewer
Jun 19, 2022
The first time I came across these firewalls, what surprised me the most was their web user interface. It is complete and gives you a lot of information. You can do 80% of the things related to your network and firewall through the web UI. In some of the other devices, the UI is not as complete. App-ID is also very valuable in customer networks. When you're seeing a lot of traffic in your network, you can see in your web UI which users have the applications that are consuming the most bandwidth. You have a broad context, which is very good.
Read full review
reviewer2152974 - PeerSpot reviewer
Apr 24, 2023
Application layer firewalling has been the most valuable feature because it gives thousands of application IDs that we can use to control traffic into and out of our environment. The second most important feature has been the GlobalProtect VPN feature.
Read full review
Donald Keeber - PeerSpot reviewer
Aug 10, 2022
It helps the organization function better by virtue of cleaner and more predictive Internet access and usage being conducted by the employees and constituents of the company. It helps ensure that they have a stronger security posture. It is preventive medicine If you have DNS Security in place. You will be happy you had it. If you don't have it, you may never need it. However, if you did need it, and didn't have it, you will wish that you did. It is one of those things, like insurance.
Read full review
ES
Dec 21, 2021
With its single pane of glass, it makes monitoring and troubleshooting a bit more homogeneous. We are not looking at multiple platforms and monitoring management tools. It is more efficient from that perspective. It is more of a common monitoring and control system for multiple aspects of what used to be different systems. It provides efficiency and time savings.
Read full review
reviewer1400883 - PeerSpot reviewer
Oct 8, 2021
Palo Alto NGFW provides a unified platform that natively integrates all security capabilities, which is very useful. This prevents us from having to go to a lot of different systems, and in some cases, many different systems in many different regions, because we are a global company with 60 remote offices around the world in 30 different countries. Its centralized platform is really what we look for in all services, whether it be security or otherwise.
Read full review
Show 10 more reviews (out of 184)
 

Palo Alto Networks NG Firewalls Cons review quotes

AdamBrenner - PeerSpot reviewer
Oct 6, 2020
The only real drawback to this product is that it is expensive. But you get what you pay for and there is no way to put a price on top-notch security.
Read full review
Ali Mohiuddin - PeerSpot reviewer
Jul 17, 2022
There are some advanced features that we aren't able to use, which include active IP authentication and app ID. We are facing challenges with implementing those two features.
Read full review
John Sayer - PeerSpot reviewer
Nov 21, 2022
The reporting and visibility are phenomenal, but you don't get that information out of the box. They can email reports regularly, and the functionality is all there. However, a lot of it is based on an older model for email, where customers have in-house email servers. The small and medium-sized business customers I deal with are moving toward Office 365 or some other cloud-based mail and not maintaining their own internal mail servers.
Read full review
Buyer's Guide
Palo Alto Networks NG Firewalls
December 2024
Free Report: Palo Alto Networks NG Firewalls Reviews and More
Learn what your peers think about Palo Alto Networks NG Firewalls. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
DOWNLOAD NOW
824,053 professionals have used our research since 2012.
GH
Sep 23, 2021
From a documentation standpoint, there is room for improvement. Even Palo Alto says that their documentation is terrible.
Read full review
Simon Webster - PeerSpot reviewer
Aug 16, 2022
The biggest thing that needs to be improved with them is their training. I took a training class for the 8.0 build, then I took it again for the 9.0 and 10 builds. They add new features every time that they do a new major release, but the training doesn't keep up. It is the same basic training that probably was with the 3.0 build, and they just change the screenshots. I would love to see them do some more work since they have all these bells and whistles, but we don't know how to use those features on a large scale.
Read full review
Gabriel Franco - PeerSpot reviewer
Jun 19, 2022
Palo Alto can do a little bit better when it comes to the User-ID part. I've been facing problems related to double authentication. You have a computer user, but you also have a VPN user, and when you do a single sign-on to another page, these logs can sometimes generate a problem notification. It doesn't happen a lot, but in some networks, it could be a problem. It would be very helpful to have the ability to restrict the connections that you can have in your VPN. For example, if you have the credentials, you can connect with the same user account from different computers or devices. If you have the domain information, you can connect from different devices. That's a problem that they need to address and resolve. They should ensure that at any moment, only one person is connected through a specific user account.
Read full review
reviewer2152974 - PeerSpot reviewer
Apr 24, 2023
The only problem that I see with the Palo Alto NGFW being an all-in-one appliance is that because of the different features that are being put into a single appliance, the OS tends to be beefier. Over the eight years, we have seen that the number of features or analyses being put into the appliance itself has a tendency to slow down the appliance, especially at the time of bootup. So, any time we are doing maintenance work, the time required for the appliance to boot up and be fully functional again is significantly longer than eight years ago. They could find a way to make this all-in-one appliance faster.
Read full review
Donald Keeber - PeerSpot reviewer
Aug 10, 2022
The tech support was once great, but now it is poor. The tech support has gone south. It is really difficult. I had a Priority 1 case last a week in their queue, and after multiple complaints, I finally got somebody to take the case. These are things that are unacceptable in the business world. They could train their employees better.
Read full review
ES
Dec 21, 2021
Once in a while, they have new features being released that can be buggy. My criticism is more general to all sorts of network or security devices. In general, everybody is releasing less-tested software. Then, it usually ends up that the first few customers who get a new release need to end up troubleshooting it.
Read full review
reviewer1400883 - PeerSpot reviewer
Oct 8, 2021
When we looked at it originally, we needed to host the Panorama environment ourselves. I would prefer it if we could take this as a service. It might be that it is available, but for some reason we didn't choose it. The downsides of hosting are that we need to feed and water the machines. We are trying to move to a more SaaS environment where we have less things in our data centers, whether they be in our cloud data centers or physical data centers, which can reduce our physical data center footprint.
Read full review
Show 10 more reviews (out of 183)

Product Categories

Product Categories
Firewalls
Next-Generation Firewall (NGFW)
Firewall Solutions for Enterprises

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Palo Alto Networks NG Firewalls Logo
Fortinet FortiGate vs Palo Alto Networks NG Firewalls
Netgate pfSense vs Palo Alto Networks NG Firewalls Logo
Netgate pfSense vs Palo Alto Networks NG Firewalls
OPNsense vs Palo Alto Networks NG Firewalls Logo
OPNsense vs Palo Alto Networks NG Firewalls
Cisco Secure Firewall vs Palo Alto Networks NG Firewalls Logo
Cisco Secure Firewall vs Palo Alto Networks NG Firewalls
Sophos XG vs Palo Alto Networks NG Firewalls Logo
Sophos XG vs Palo Alto Networks NG Firewalls
Azure Firewall vs Palo Alto Networks NG Firewalls Logo
Azure Firewall vs Palo Alto Networks NG Firewalls
Check Point NGFW vs Palo Alto Networks NG Firewalls Logo
Check Point NGFW vs Palo Alto Networks NG Firewalls
WatchGuard Firebox vs Palo Alto Networks NG Firewalls Logo
WatchGuard Firebox vs Palo Alto Networks NG Firewalls
SonicWall TZ vs Palo Alto Networks NG Firewalls Logo
SonicWall TZ vs Palo Alto Networks NG Firewalls
Juniper SRX Series Firewall vs Palo Alto Networks NG Firewalls Logo
Juniper SRX Series Firewall vs Palo Alto Networks NG Firewalls
Untangle NG Firewall vs Palo Alto Networks NG Firewalls Logo
Untangle NG Firewall vs Palo Alto Networks NG Firewalls
Fortinet FortiGate-VM vs Palo Alto Networks NG Firewalls Logo
Fortinet FortiGate-VM vs Palo Alto Networks NG Firewalls
SonicWall NSa vs Palo Alto Networks NG Firewalls Logo
SonicWall NSa vs Palo Alto Networks NG Firewalls
Sophos XGS vs Palo Alto Networks NG Firewalls Logo
Sophos XGS vs Palo Alto Networks NG Firewalls
KerioControl vs Palo Alto Networks NG Firewalls Logo
KerioControl vs Palo Alto Networks NG Firewalls
See all alternatives

Product Categories

Product Categories
Firewalls
Next-Generation Firewall (NGFW)
Firewall Solutions for Enterprises

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Palo Alto Networks NG Firewalls Logo
Fortinet FortiGate vs Palo Alto Networks NG Firewalls
Netgate pfSense vs Palo Alto Networks NG Firewalls Logo
Netgate pfSense vs Palo Alto Networks NG Firewalls
OPNsense vs Palo Alto Networks NG Firewalls Logo
OPNsense vs Palo Alto Networks NG Firewalls
Cisco Secure Firewall vs Palo Alto Networks NG Firewalls Logo
Cisco Secure Firewall vs Palo Alto Networks NG Firewalls
Sophos XG vs Palo Alto Networks NG Firewalls Logo
Sophos XG vs Palo Alto Networks NG Firewalls
Azure Firewall vs Palo Alto Networks NG Firewalls Logo
Azure Firewall vs Palo Alto Networks NG Firewalls
Check Point NGFW vs Palo Alto Networks NG Firewalls Logo
Check Point NGFW vs Palo Alto Networks NG Firewalls
WatchGuard Firebox vs Palo Alto Networks NG Firewalls Logo
WatchGuard Firebox vs Palo Alto Networks NG Firewalls
SonicWall TZ vs Palo Alto Networks NG Firewalls Logo
SonicWall TZ vs Palo Alto Networks NG Firewalls
Juniper SRX Series Firewall vs Palo Alto Networks NG Firewalls Logo
Juniper SRX Series Firewall vs Palo Alto Networks NG Firewalls
Untangle NG Firewall vs Palo Alto Networks NG Firewalls Logo
Untangle NG Firewall vs Palo Alto Networks NG Firewalls
Fortinet FortiGate-VM vs Palo Alto Networks NG Firewalls Logo
Fortinet FortiGate-VM vs Palo Alto Networks NG Firewalls
SonicWall NSa vs Palo Alto Networks NG Firewalls Logo
SonicWall NSa vs Palo Alto Networks NG Firewalls
Sophos XGS vs Palo Alto Networks NG Firewalls Logo
Sophos XGS vs Palo Alto Networks NG Firewalls
KerioControl vs Palo Alto Networks NG Firewalls Logo
KerioControl vs Palo Alto Networks NG Firewalls
See all alternatives
Related questions
  • 161
Is Palo Alto the best firewall for an on-premise/cloud hybrid IT network?
  • 3,897
What are the main differences between Palo Alto and Cisco firewalls ?
  • 5
Expert Opinion on Palo-Alto Required.
  • 47
Which is the best IPS - Cisco Firepower or Palo Alto?
  • 193
Features comparison between Palo Alto and Fortinet firewalls
  • 178
Is Palo Alto Networks NG Firewalls better than Check Point NGFW?
  • 92
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
  • 277
What are the main differences between Palo Alto firewalls and Cisco Secure Firepower?
  • 55
What is a better choice, Azure Firewall or Palo Alto Networks NG Firewalls?
  • 14
Which Palo Alto Networks NG Firewalls model is recommended for 1200 users?