Palo Alto Networks WildFire Reviews

We don't want a virus. We don't want people visiting unknown sites and opening us up to any type of malware or any type of virus attacks.

We haven't had a virus. That is a good thing. It makes my job easier. For the organization as a whole, no viruses mean people keep their jobs, which is a good thing.

It is an outstanding solution. It is one of the top solutions out there from what we have tested, and we have even tested Cisco Firepower.

You can see everything that's going on in your network. It constantly updates their signatures and new anti-spyware signatures. That is updated daily.

It catches modified signatures of known viruses. It is an easy interface to use. 

They should make their user interface a little more user-friendly.

We are a decent size organization. If the product can fit our organization, it should be able to fit pretty much any other organization just as well.

Their technical support is outstanding and top-notch.

They were things that only somebody who had worked with Palo Alto before would probably be able to break down, then tell you how to set up your initial rule sets and explain what exactly they do. The vendor helped us look at what we have going out versus what is coming in.

They provided in-house support when we initially set it up. They made sure that we were supported from start to finish. Any questions we had, we had someone that we could reach out to, and we had an answer within a matter of minutes to hours. They are very responsive and easy to work with.

Test it in your environment because everyone's environment is different.

Most important criteria when selecting a vendor:

• Price matching up with features.
• Support
• SLA agreements
• Customer relationship management.

Installing this product as a datacenter firewall for segregation and segmentation, and also configuring policies between zones.

Threat Prevention and WildFire features should be enabled in Palo Alto. With this product, we receive the best monitoring and reports.

The VPN and decryption need improvement.

No, I did not encounter any issues with Palo Alto's firewall. The product is very stable.

No, but you should do the rightsizing before buying the product. 

They provide a medium level of technical support.

I used Cisco. Palo Alto is better for datacenter and Cisco for perimeter.

Straightforward to use.

More expensive than other firewalls.

We evaluated Cisco Firepower.

My advice is to install Palo Alto's firewall as a datacenter. You should enable the features (Threat Prevention (AS, AV, and Vulnerability Protection), File Blocking, URL Filtering, WildFire, etc.).

Palo Alto's firewall is the best firewall right now. I have used Palo Alto since 2014.

This product/feature is an enhancement to traditional company/corporate AV and VP solutions, not a replacement. As such, it strengthens existing protections and provides significant visibility into files and applications that are moving through the company's systems.

Detailed reporting on analysis of content. The inspections are easily applied to security policy profiles and profile groups, and may be assigned on a per-rule basis.

No stability issues.

No scalability issues.

I have never accessed PAN (Palo Alto Networks) technical support regarding this feature.

This is a fairly unique feature offered by Palo Alto Networks (may be comparable to FireEye). As such, it was an addition to our existing protection suites.

Very straightforward. Basically, a few check boxes and desired behaviors.

It is expensive, a feature more accessible to enterprise class customers, but provides an enhanced possibility that Zero- or near-Zero-day threats may be identified and mitigated. The cost of the product weighed against the potential impact of even one successful crypto malware-type exploit may justify the expense.

No, again this "WildFire" is a fairly unique feature. The closest comparison may be FireEye, but I have not used that product.

Consider your level of exposure to exploits of any nature. Also, consider the impact (cost and loss of business) of even one successful exploit to help make a business decision regarding this product.

I would also advise that the decision should be considered with regard to the company's ability/willingness to provide the assets to keep abreast of these types of products and features. There are no set and forget type functions.

It provides the enhancing network and endpoint security for the client through its IDA and IPS system filtering.

The most valuable features are:

• High availability with active-active and active-passive modes.
• Redundant power input for increased reliability.
• Fan-less design.

The data analytical system for deployment needs to improve.

Technical support is excellent, I would rate it a 10/10.

It is quite easy to set up.

The pricing and licensing option should be categorized for various countries such as for Bangladesh.

We looked at Forcepoint NGFW.

Technical support is excellent and it is a promising option.

WildFire has been instrumental in blocking a number of new threats, before common desktop anti-virus tools were able to detect them. When Wannacry first came out, wildfire was detecting it and dropping incoming threats within seconds. We were dropping over 10,000 files per day with no additional firewall load at all.

Dynamic analysis.

I am very happy with WildFire and can see no obvious areas of improvement at this point.

This product is rock solid in terms of stability.

There were no problems with scalability. We have rolled out more firewalls to clients, and no scalability issues were found.

Technical support is fine. We have never needed to contact them regarding WildFire.

We previously used Fortinet. However, we found it to miss a lot of incoming viruses, because at the time, they had no sandbox style service.

The setup was very easy. Simply license the feature and enable it within your scanning profiles.

This feature is implemented in-house.

As soon as it began dropping incoming threats, measured in days, that desktop scanners could not find, it hit its ROI.

It's not particularly cheap, but it is absolutely worth it.

We evaluated Fortinet and Cisco.

Do it.

• Much more visibility during an attack lifecycle; found a lot of infected hosts and vulnerabilities.

• App-ID
• Easy migration
• Credential-based attack prevention
• PBF easily configured
• Whole team can use the firewall and understand it

The GUI is better in 8.0, but I still feel it lacks the fast response most of us desire. Logs are much quicker.

We have not encountered any stability issues.

We have not encountered any scalability issues.

Customer Service:

Customer service is excellent. Their support is top-tier for sure.

Technical Support:

Technical support is excellent. Their support is top-tier for sure.

We previously used legacy Cisco ASA. We switched because it was buggy and had no visibility; it was not easy for the rest of my team to use.

Initial setup was straightforward.

A vendor team implemented it. They were amazing.

It IS a bit expensive, but I think you get what you pay for. Value is there.

Before choosing this product, we also evaluated Check Point, Cisco, and Fortinet.

• App-ID
• User-ID
• Ease of deployment and usability
• Filtering Mechanism like SP3 Engine

From a technical perspective this has given us a new high as this is how a technology solution should function. From a sales perspective, we have been able to pitch the solution to new customers as it seems cheap to customers when we bundle the solution, compared to getting each device for individual functions.

• IP SLA tracking
• GRE tunnel support

I believe these are the major improvements in the pipeline.

I've been using it for four years.

It crashes too frequently for a few boxes, which could be expected from a new vendor as it evolves. The best part is RMA, as you get the box back quickly if you have it in the contract.

No issues encountered.

No issues encountered.

If it is Arrow support, it's pathetic. I wouldn't recommend them. However, if you go directly with the PA team they are the best tech junkies I have worked with.

6/10.

We used to have Netscreen as our favourite, but it went EOL. Being an MSP we have to have expertise with all the devices. Although, Netscreen is our favourite.

I would say that this is difficult to answer, as the setup would be adaptable based on the mode you use, and the way the firewall can be configured. If you ask an expert it would be straightforward. If you ask a newbie, it would be not that difficult to configure if you follow the mentioned steps.

Go forward, this is an amazing device to be implemented if you have the cost to bear.

It has one of the best WebUIs that I have used, because at a glance looks simple, but offers us a lot of options to secure all the traffic that is passing through the device (or all traffic that the user decides to pass through). Besides, the way that scan the applications to detect what kind of application is do not affect anything about the device's performance. The way that the product process or handle the traffic, is one of the best in the industry.

Well, I work as a security consultant, so one of my functions is to help and provide to the end users with recommendations about technologies or process to secure their network. So, one of my customer decide to migrate from TMG/UMG to Palo Alto, it took a while, but during this process, I showed them many ways to improve their current security with Palo Alto, and after a while, they are very comfortable with the technology, for them now, it is easier to apply some kind of web filtering or application filtering than the past.

I'd like to see a wizard to create IPSec VPNs. They need to  improve the graphics to show the network behavior.

Deployment is easy.

The stability is acceptable.

It depends about the project, but offers a good HA option.

Always show to the customer what the product can do for them and what not, is a good practice, because they can open their eyes and to be sure what are the benefits of that technology. Always analyze the network topology, using the customer's network diagram and ask every doubt that you have, for my experience a good analysis and deployment plan give us a successful implementation.