totaram
asked on
Palo Alto
I see Palo Alto gaining more and more popularity, How are the Palo Alto FWs any different from other FWs ? What is something that PA brings to the table that others can not?
PaloAlto firewalls are considered NGFW next generation firewalls
PaloAlto has been the industry leader in firewall sales and increased market share for seven years in a row
top of Gartner and forester reports
Andrew mentioned Wildfire which is a threat intelligence cloud
only one in the entire industry to come close to this is FireEye - the difference is wildfire is built into the firewall machine learning and on top of the firewall and it doesn’t cost what FireEye does
They took Threat intelligence -Content filtering -Data Filtering -application identification -VPN AV AS Vulnerability Detection and put it all together in one box that is ….by default a firewall
Panorama (Separate management tool) looks exactly like the firewall - easiest tool ever
They also support SDN and SASE directly with firewall
Decent reporting 40 canned reports and a report query
Plus they have a ton of vendor APIs if you need something extra
The Wildfire / threat / Unit 42 team are THE industry leaders in bug/malware detection
Unit42 just won that award again
PAN did just come out with a branch level 400 series to address the small/medium space
GUI is intuitive - admins learn it quickly
Device and CLI have a lot of Juniper similarity
cons - bit expensive depending on licensing
Cisco /Juniper have stronger routing in their Hybrid devices
Side note
I have used and taught all three vendors
PaloAlto has been the industry leader in firewall sales and increased market share for seven years in a row
top of Gartner and forester reports
Andrew mentioned Wildfire which is a threat intelligence cloud
only one in the entire industry to come close to this is FireEye - the difference is wildfire is built into the firewall machine learning and on top of the firewall and it doesn’t cost what FireEye does
They took Threat intelligence -Content filtering -Data Filtering -application identification -VPN AV AS Vulnerability Detection and put it all together in one box that is ….by default a firewall
Panorama (Separate management tool) looks exactly like the firewall - easiest tool ever
They also support SDN and SASE directly with firewall
Decent reporting 40 canned reports and a report query
Plus they have a ton of vendor APIs if you need something extra
The Wildfire / threat / Unit 42 team are THE industry leaders in bug/malware detection
Unit42 just won that award again
PAN did just come out with a branch level 400 series to address the small/medium space
GUI is intuitive - admins learn it quickly
Device and CLI have a lot of Juniper similarity
cons - bit expensive depending on licensing
Cisco /Juniper have stronger routing in their Hybrid devices
Side note
I have used and taught all three vendors
ASKER
I have been told that there are 5 zones, Management/MPLS/Internet/Internal and DMZ, can you please shine some light on that?
Thanks in advance;
Thanks in advance;
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks Darin
Palo Alto Pros:
Palo Alto Cons: