VM-Series Virtual Next-Generation Firewall (BYOL)
Palo Alto Networks | PAN-OS 10.1.14-h6Linux/Unix, Other PAN-OS 10.1.14-h6 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
The best firewall
Robust firewall technology. It's reliable, resourceful, and easy to manage.
After years deploying and managing other brands, I found a great product and I'm happy so have it available for AWS.
Integration in AWS is well documented and easy to follow.
- Leave a Comment |
- Mark review as helpful
Deep Experience with PaloAlto VM series
Easy to access through console, SSH, or GUI.
Implementation is much easier by using scripts.
Support is not bad.
I used to deal with PaloAlto daily and troubleshoot from time to time.
Integration with other software is easier depending on the cloud platform.
Customer support is not providing the expected support immediately, we have to wait until we get a senior engineer.
No Rating
This is informational, the product allows you to launch on c5.large however that is not enough memory. It will boot to maintenance mode with an error in the system log about not having enough memory. Needs > 4GB, not 4GB.
True NGFW with Performance
1. perimeter security which giving best of breed secuity
2.easy administration.
3. Very wide and Deep Details of Traffic
4. Increased performance due to its single pass architecture
Next Gen Firewall VM Series with complete app control
Horribly Slow!
Earlier versions are super slow to launch (pass basic status checks), and super slow to bootstrap (respond even on ssh port). The latest version fails to launch fast enough to get past the basic status checks (10 minute timeout), and there is no means to alter this timeout for an auto scaling group (not the same timeout has HealthCheckGracePeriod). If you're designing for high availability, this is not the product for you.
Good solution with new feature
Once a mighty company
I've been an advocate for using Palo Alto firewalls for over a decade. They were so far ahead of everyone else. The gap has closed quite signficantly, and they still shine when it comes to being a full layer 7 firewall. The problem is that the company has grown too large and the product has tons of bugs, support is non-existent. They hire people off the streets to support them because they have such a large customer base, and these "off the street" people in turn hire people with even less skill than them. It's a crap shoot when deploying PANS these days, as you run into all kinds of issues, and don't even think about opening a case. You will have to invest tons of times to over explain the issue, be fed with useless documents (you can find those yourself), and escalate multiple times, and then if you're lucky, you may find someone that can find a bug , which will almost never get fixed.