Palo Alto Networks NG Firewalls Reviews

We use this solution for WAN routing, NAT, VPN tunnels, granular security policies, URL filtering, antivirus, threat prevention, sandboxing, decryption, high availability, and reporting.

Palo Alto has improved traffic visibility, and the ability to manage it. With Palo Alto, we have more flexibility and our network is more secure. With our High availability pair, we have had no downtime for several years, since it was first put it in production. We have even changed boxes for new models during this time.

Palo Alto is easy to use, feature-rich, and it has good technical support. You can fetch users, so you have visibility by username, IP address, destination, application, and you can even define a custom application.

In the GUI, you can easily find blocked traffic and the reason for it.

The only thing that is a little strange is in Policy-Based Forwarding. When you delete and add a new rule, because of the one hundred rule limit, if the new rule has an ID that is greater than one hundred, even though you have fewer than that, it will not work. The same thing happens when you are renaming a rule. The new rule will have a new ID, so it is possible for it to be greater than one hundred. This can be easily fixed by using one command from CLI, but you have to be aware of it.

The technical support for this solution is good.

Our previous solution was open source, and not so easy to manage. We had a Linux Iptables firewall, Squid + DansGuardian proxy, and an OpenVPN server. We replaced all of these solutions with Palo Alto.

If you have some network experience then you can set it up on your own, with no setup costs. Don't buy a device with more power than you really need, because licensing depends on the cost of the box you have.

We evaluated Sophos, SonicWall, and Fortinet.

PA is a product that continuously improves, so, I have nothing to add in terms of features.

My advice is not to look for a cheaper solution, as the price/performance ratio on Palo Alto is great.

We are using it for data center protection, intrasystem security, endpoints protection, load balancing, and DHCP.

The App-ID, Content-ID, User-ID, and encryption and decryption are valuable features.

They can improve the handling and management of User-ID. They should also improve its price. Their technical support can also be improved.

I have been using this solution for three years.

It is stable and reliable.

We went from 4 devices to 16 devices, and it was not a big problem. Currently, we don't have any plans to increase its usage. Our network won't grow over the next two years. It will stay as it is.

Their technical support is sometimes lousy, but sometimes, it is okay. Their technical support can be improved.

Its initial setup is not too complex for an environment like this.

Its price should be improved.

I would recommend this solution. I would rate Palo Alto Networks NG Firewalls an eight out of ten.

We use it for perimeter security.

Overall, it is a good solution. It is stable. We use URL filtering, which is useful for blocking undesired URLs.

Currently, they don't have email protection. They can maybe add it in the future. Currently, if you want to do so, you need to go with another solution.

I have been using this solution for two years.

Its stability is perfect. It has excellent stability.

With this kind of solution, you need to be careful in terms of planning because once you have the appliance, it is very difficult to scale too much. You need to carefully select the right appliances because if you need to run more services and traffic beyond the ones you have selected, you would have to replace the appliance. You would have to upgrade it. We currently have 100 users in our organization who use this solution.

We never had the need to open a support case. It never happened that something that was supposed to work was not working. If required, we can find the answers in the product documentation.

If you have the right experience, it is okay. It is not very easy, but if you know how to manage it and configure it, it is okay. It takes maybe 5 to 10 hours or a day.

I would advise others to go for it. They will not get disappointed. It is complex at the beginning because it has a lot of features, but this is something that you overcome with training. With training and experience, you can manage it.

I would rate Palo Alto Networks NG Firewall a nine out of ten.

I am currently testing Palo Alto and preparing for an exam.

The Global Protect Feature has allowed our organization to support our remote workforce. 

I have found it to be reliable and very easy to use. I haven't really encountered many problems with it because its documentation is clear and readily available on their website.

They need to provide documentation for CLI, as most of the commands, we get from Community Forums.

I have been doing research on Palo Alto for the past nine months.

It is stable.

Highly scalable as the HA deployment allows you to pair up to eight devices at once. 

I haven't had a chance to contact them.

Palo Alto is my first solution.

Initial setup is easy and subsequent changes have been easy to implement as well. 

In-house expertise. 

Sophos XG.

I would say go for it because it seems to be stable and very reliable. I've spoken to some specialists who vouch for Palo Alto. They say they've been using it in their environment, and it hasn't let them down so far.

I would rate this solution a nine out of ten.

We primarily use this product to protect our network.

The most valuable feature is the application firewall.

The GUI is user-friendly.

The way that the roles are made, specifically with how you specify the path, could be simpler.

I have been working with Palo Alto Networks NG Firewalls for one year.

We used the product on a daily basis and have had no critical issues so far.

We have hundreds of users in the company and have not tried scaling it.

With regards to support, they have a lot of things to improve.

We also use Check Point as a firewall. Both have their advantages but for my part, Palo Alto is better because of the way it handles applications. Check Point is better if you are only using ports and TCP/IP.

The initial setup is of medium difficulty. It is not simple yet not complex.

We implement in-house with some assistance from the vendor. It took a few hours to deploy.

Palo Alto is more affordable than some competing products, such as Check Point.

In summary, this is a good product and I recommend it.

I would rate this solution a nine out of ten.

We are a solution provider and one of the Palo Alto products that we implement for our clients is the Next-Generation Firewall. It is used to protect your workflows in cloud environments, be it Azure, AWS, or Google. It can also protect your applications' databases that are on-premises.

This firewall will scan the network for vulnerabilities and malware.

It can prevent unauthorized access to the network.

This solution has a DLP function.

They are regularly releasing new versions that include more integration with third-party services. Examples of services that have already been integrated are Splunk and two-factor authentication.

Having a better pricing model would make this product more competitive, and more affordable for our customers.

We have been dealing with next-generation firewalls from Palo Alto for more than five years.

So far, this solution has been stable.

The product is scalable and it can be integrated with third-party solutions.

We have many clients who are using this firewall.

The technical support from Palo Alto is good.

In terms of firewalls, we use Palo Alto, Cisco, and Fortinet FortiGate. 

The next-generation firewall can be installed either on-premises or in a cloud-based deployment.

The NG firewall is an expensive solution.

I would rate this solution a ten out of ten.

Our primary use case was for perimeter protection.

Innovative, advanced threat protection is the most valuable feature. 

I don't see any specific room for improvement.

The user interface is probably not as slick as it could be.

I have been using Palo Alto for three years. 

We're on-premises primarily at the moment, but also a cloud product. 

The stability is generally pretty good. I haven't heard any complaints from our customers around Palo Alto's stability. It's one of the reasons why they're the leaders in this space.

We've got our own team for maintenance. My company is a large multinational with 20,000 employees.

I have contacted their support once. It's very good support. They help me to fix our problem quickly.

The initial setup was complex. It's not very intuitive. You need to know what you're doing for the initial setup, you need to be a Palo Alto expert.

If you compare it to their competitor Fortinet, Fortinet's FortiGate product is a lot easier to install, if you're not an expert.

The time it takes to deploy depends on how complex the deployment needs to be for the client. If it's a basic deployment, is going to take around two days. 

My advice would be to make sure the firewall is configured properly.

I would rate it an eight out of ten. Not a ten because you have to be really excellent before you get a ten out of me.

In the next release, I would like to have the ability to auto-generate rule and policy, based on known traffic, based on the baseline. That is a feature that I think Palo Alto should be able to have in some form or fashion to auto-generate and propose a policy and rules set, after putting the file into a learning mode for some period.

We use this solution to protect our network.

This solution has helped our organization by protecting the perimeter of our network from both internal and external threats.

There are plenty of features available in this solution, such as attack blocker and spam blocker. Additionally, it is very robust and in-depth.

The solution is not straightforward.

I have been using this solution for approximately eight years.

The solution is very stable.

The scalability is good. We have approximately 500 users using this solution in my company.

The initial setup was complex. The full installation, including customize to meet our requirements, took approximately one month.

We used the help from an integrator team for the implementation.

The technical support is satisfactory.

The price of the solution is on the higher side compared to competitors.

We are currently looking for a better-priced solution.

This is a very good solution but it is very expensive.

I rate Palo Alto Networks NG Firewalls a six out of ten.