5 out of 5.0, Reviewed Sep 19, 2016
Palo Alto has been extremely responsive to changes/features/bugs, we left a well -known vendor because we became a number and nothing else.
WildFire is a tough sell to executive management, talk to Palo Alto to get customer references that can speak to specific examples of where WildFire has done a spectacular job of saving end users. I have Wildfire deployed in front of critical life and limb systems, and WildFire has potentially saved lives.
Other than the obvious security benefits, the visibility and reporting that we gained by using Palo Alto was tremendous, and very eye-opening.
Palo Alto is not necessarily cheap. The counter to that is that we are actually outsourcing a fair amount of security work to experts (Palo Alto) and am paying for that expertise and ability.
Palo Alto should bundle WildFire in with the security offering, or even give a free year. It would make it much easier for technical staff to sell it to management if there were already documented on-site success stories.
Deploying a Palo Alto successfully with full L7 capabilities requires going across operational boundaries. We were slow to fully extend what was seen as a traditional piece of network gear into other areas of the organization, and could have potentially increased the adoption rate earlier, of both PA as well as WildFire in particular.
Palo Alto is the benchmark that I'm using as an architect to compare others to.
Top notch support, very friendly, and willing to work well beyond the end of their shift for major issues.
5 out of 5.0, Reviewed Sep 19, 2016
I have been working on firewalls since 1999 and the PAN firewall is by far the most powerful product I have used. Don't forget they also have an endpoint client "Traps" that take your desktop security to the next generation.
Do a POC and let them show what that old Layer 3 firewall is missing. Make sure to use all of the features especially decryption as that is where all of the bad stuff lives!
Support is quick to respond and very knowledgeable. None of this "upgrade your code and call us back business." The hardware is very fast and the configuration is easy to understand especially if you are coming from another zone based firewall.
Commit times on small firewalls such as the 200 or 500 series.
Nothing at this time
Extremely powerful box! Decryption Anti Spyware Anti Virus Malware Client VPN Cloud updates
Support is always quick and very knowledgable which is hard to find in the Tech world.
We cut over with very little notice/issues from the end user.
5 out of 5.0, Reviewed Aug 17, 2016
Excellent security product. We had a attempted hack for SCADA network and was blocked. The advisory came out a few weeks later and we shown the event was blocked to senior management and board members.
Drop old Cisco ASA fast.
Best security product of it class
License cost and have to replace the entire appliance if you did not plan for expansion
Less software maintenance cost
No. Excellent product investment. We are expanding the Palo Alto deployment in the agency
Best of its class for inbound web traffic and outbound traffic management
Timely and competent support team
Move old policies to new policies may be a bit challenging Hard to test in production environment
5 out of 5.0, Reviewed Jul 28, 2016
Fast html5 interface, good customer support.
We have a good support engineer, which is very responsive to your questions.
Got a bigger box with more interfaces, so we have create different dmz zones.
Not sure how it intergrate with Cisco ACI.
5 out of 5.0, Reviewed Jul 28, 2016
The Palo Alto platform is incredibly easy to use and was very fast to deploy. With all the features enabled, we now have a unified pane of glass into the who, what and where of all traffic flows into and out of the network. When comparing other platforms, the Palo Alto interface feels like a Mac OSX as compare to others. For a cross-trained team of admins and SoC staff, having this simple to use system makes sharing and collaborating very easy.
Consider the big picture Palo Alto offers and the total value of NGFW (next-generation firewall).
It is a higher price solution on the surface, but once in place, you know you are getting a valuable system.
Ensure validation steps were involved after the swap to ensure no unknown exposure was introduced.
4 out of 5.0, Reviewed Jul 28, 2016
Product has worked well at securing our network. Could use better documentation and visibility of known bugs.
5 out of 5.0, Reviewed Jul 14, 2016
Very easy to deploy and very flexible features. We configured three globally diverse sites in our clients for performance based dynamic selection of the VPN destination. Users are amazed at how much better their user experience is after their switch to GlobalProtect from our previous vendor. They enjoy the always-on/automatic connection and never have to worry about manually logging into VPN. They are just always ON the network.
Leave the latest client version for your test environment and deploy the older major revision unless you need a specific feature.
Usability for the clients is amazing. They absolutely love it. Administratively it is very easy to setup and maintain as well.
Again, just the ability to change the client's Portal server within a VPN profile vs having to push a registry change or something.
Allow for modification of the GlobalProtect Portal the client connects to so you can easily shift users from one portal to another to retire a system or migrate a user profile from a test box to production.
Nothing different probably.
Very capable solution with many options we have and have not yet deployed.
Never had a better vendor support team than what PANW provides. Always has been top notch.
4 out of 5.0, Reviewed Jul 14, 2016
Experience relatively smooth. Migrating legacy policies to new application based policies was biggest hurdle.
Take an administrative course prior to implementation.
excellent customer technical support from Palo Alto.
advise on training.
Extensive training on app technology would have helped.
5 out of 5.0, Reviewed Jul 8, 2016
Great assistance from vendor when needed; strong product performance.
Take your time, be patient, focus and stage the process.
Excessive amount of options, services, configurations, and future capabilities.
Challenging migration but worth the effort.
Take longer for planning, more team involvement.
5 out of 5.0, Reviewed Jun 21, 2016
Our migration to Palo Alto firewalls went very smooth. The firewalls lived up to their expectations. This provided us with a smooth transition.
Take your time and plan well. Intense planning and preparation were what lead to the success of this migration.
The ease of use with the Palo Alto firewalls and Panorama made for a smooth transition from managing our old firewalls to the new firewalls. The interface is intuitive and the CLI fills in all the gaps.
I would like to be able to see more troubleshooting information from the GUI.
I feel that we should have taken more time and a different approach to migrating firewall rules from our old platform to the Palo Alto firewalls. By utilizing scripts provided by the 3rd party service vendor, the rule migration was "fast", but left us with many duplicate rules. As painful as it would have been, I feel that we should have manually migrated the rules. This was no fault of Palo Alto.
The Palo Alto firewalls have been flexible to meet our needs. They offer everything we have needed.
Our experience with Palo Alto support has been top notch. We have always been able to work with knowledgeable support staff and our issues have been resolved in a timely manner.
We were able to complete our deployment of the new firewall infrastructure with no unexpected downtime. We received excellent support from Palo Alto throughout the process and with any problems that arose during the process.