List of Palo Alto firewall benefits and use cases needed

I need to come up with a list of Palo Alto firewall benefits and develop use cases supporting those benefits.
Rocky CortezCyber Security EngineerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

David Johnson, CD, MVPOwnerCommented:
In comparison to what?
btanExec ConsultantCommented:
More in the context of the use of application awareness (a form of context awareness) provided in next generation firewall (NGFW) and unified threat management (UTM) functionality that leverages
deep packet inspection techniques to permit valid (authorized) applications only. Pretty different from the stateful protocol FW.

As for use case, I see it better to safeguard your architecture in accordance to segregated network segments such as high, medium and low risk domain. Ideally have them all be NGFW as baseline otherwise can plan out minimally (all to have HA). Also physical FW deployed on Tier (web/app/db). Some even varied the FW provider for different tier just to make no miss out or vulnerable state for all FW in one instance due to disclosure of exploit etc..
e.g. High risk - NGFW (higher load throughput esp for DDoS)
e.g. Medium risk - NGFW (lower load throughput) or Stateful FW (higher end with more protocol)
e.g. Low risk - Stateful FW (refrain to have it from router or switch access control as substitute, for business-critical services still opt for higher end)

Look into such NGFW for (on top of application, another in-depth insight)
e.g. blocking of suspicious DNS queries to prevent C&C callbacks or malicious domains (esp those domain generation algorithm-based mostly leads to malware as the source)
e.g. examination of executable payload in packet traversed through the FW with sandboxing and emulation deep inspection technologies (kinda of malware analysis but can be offloaded to other appliance like case of ICAP to ext AV servers...)

I will avoid having NGFW as a all in one security device but stick more to guarding the perimeter with more visibility from various source to ascertain identity, content payload and application specific.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
DarinTCHSenior CyberSecurity EngineerCommented:
so PaloAlto is the leader of NGFW
stateful FW based on Application - so full APP-ID and UTM Features and IDP ---- all in one
and easy to use - GUI and don't forget Wildfire

here are some docs -- besides the stuff on PaloAlto site

http://searchsecurity.techtarget.com/definition/next-generation-firewall-NGFW
https://en.wikipedia.org/wiki/Next-Generation_Firewall
http://www.fortinet.com/solutions/next-gen-firewall.html

plus the gartner report (top right quadrant) is valuable
btanExec ConsultantCommented:
If we are talking above leader then it is the usual palo alto, checkpoint, cisco and sonicwall folks that bring on enterprose deployment. They do have endpoint solution to augment the perimeter guarding with their continuous new acquisitions into their security profile offering. But do note, I do not see best of breed should the reason of choice instead it sjould be a fit for design choice. Most opt for different brand or vendor in tier FW deployment for diversity of defences to avoid lock down and balance out risk exposure with single supplier
Rocky CortezCyber Security EngineerAuthor Commented:
I've requested that this question be deleted for the following reason:

Not needed
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.