VM-Series Virtual Next-Generation Firewall (BYOL)
Palo Alto Networks | PAN-OS 8.1.25-h1Linux/Unix, Other PAN-OS 8.1.25-h1 - 64-bit Amazon Machine Image (AMI)
External reviews

External reviews are not included in the AWS star rating for the product.
PAN provides a great NGFW. I have managed/deployed PAN firewalls throughout my career
- Leave a Comment |
- Mark review as helpful
Palo Alto NGFW
1. Palo Alto NGFW provides a user-friendly web UI to configure and manage security policies and settings. So, it is easily implemented and integrated with third-party vendors.
2. The panorama management platform is good for centralized management and policy distribution of larger Organizations.
3. Palo Alto Networks provides customer support and assistance during the implementation process. it is beneficial in resolving technical issues.
4. For most of the projects, we recommended using and explaining the benefits and security of Palo Alto NGFW.
- Migrating away from a Palo Alto Networks NGFW to a different vendor or solution can be challenging due to vendor-specific configurations and policies.
- to detect and block ransomware and other malicious.
- to restrict the malicious or compromised websites.
- to prevent users from inadvertently downloading ransomware from malicious websites.
- to restrict access and actions based on user roles and permissions, reducing the risk of ransomware infections.
- to prevent the use of potentially risky or unauthorized file-sharing and download services.
- to enhance your security posture and protect against known ransomware threats.
Monitoring and managing network traffic
No Rating
This is informational, the product allows you to launch on c5.large however that is not enough memory. It will boot to maintenance mode with an error in the system log about not having enough memory. Needs > 4GB, not 4GB.
An reliable security solution
Prisma SASE is a tool that provides organizations with visibility, control and protection
Horribly Slow!
Earlier versions are super slow to launch (pass basic status checks), and super slow to bootstrap (respond even on ssh port). The latest version fails to launch fast enough to get past the basic status checks (10 minute timeout), and there is no means to alter this timeout for an auto scaling group (not the same timeout has HealthCheckGracePeriod). If you're designing for high availability, this is not the product for you.
Palo Alto Firewall Deliver You A Next Generation Capabilities With Advanced Security Protection
- Good Customer Support Services Which Will Assist You During There Is Issue On Your Devices
- Detail Traffic Log, Security log During Troubleshooting
- Complexity On Configuration Which Will Require You To Have Some Basic Knowledge On Firewall Concept
- Firmware Updates And Stability To Address Vulnerabilities And Enhance Feature
- Prevention And Mitigation On Robust Security Protection
- Layer 7 Application Visibility To Classify Network Traffic On Application Level
Once a mighty company
I've been an advocate for using Palo Alto firewalls for over a decade. They were so far ahead of everyone else. The gap has closed quite signficantly, and they still shine when it comes to being a full layer 7 firewall. The problem is that the company has grown too large and the product has tons of bugs, support is non-existent. They hire people off the streets to support them because they have such a large customer base, and these "off the street" people in turn hire people with even less skill than them. It's a crap shoot when deploying PANS these days, as you run into all kinds of issues, and don't even think about opening a case. You will have to invest tons of times to over explain the issue, be fed with useless documents (you can find those yourself), and escalate multiple times, and then if you're lucky, you may find someone that can find a bug , which will almost never get fixed.
Best Firewall in market
Software instability