We performed a comparison between Prisma Access by Palo Alto Networks and VMware SD-WAN based on real PeerSpot user reviews.
Find out in this report how the two Secure Access Service Edge (SASE) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features are the antivirus as a whole, the anti-malware, and all of the protection features that scan our enterprise devices."
"The solution is stable."
"The protection offered by the product is the most valuable feature. It detects vulnerabilities or traps on our users' phones and then prompts them to clean up their devices. Tools we used previously would only discover, which required us to gather information on the backend, so Lookout is a welcome upgrade."
"On the outside, the main differentiation is because Lookout ingest. They have ingested basically all of the apps for the last ten years and all the versions of all the apps, and we have that in a corporate database that allows us to do very large-scale machine learning and analysis on that data set. That's not something that any of the competitors really have the capability to do because they don't have access to the data set. A lot of the apps you can no longer get them because that version of the app is five or six years old, and it just doesn't exist anywhere anymore, except within our infrastructure. So, the ability to have that very rich dataset and learn from that dataset is a real differentiator."
"The performance is good."
"We have an application called ADEM that helps us troubleshoot network-related issues. It helps us to isolate an issue whether it is on the ISP level, endpoint level, or system access level."
"The visibility perspective is pretty cool. If I want to know how much data is being used for a specific project, I can look at how much data has been used, from which region, and which users have been connected. That visibility is very good so that I can see how many licenses we have and how many are used."
"The stacked policies, event policies, and routing policies are easy to understand for someone with general knowledge."
"A feature I've found very helpful is run time security because most of the products on the market will look at security during the build time, and they don't really look at what happens once you're going into production."
"It is easy to use, easy to integrate, and is stable. It's scalable as well."
"The Autonomous Digital Experience Management (ADEM) offered by Palo Alto is a good reporting tool. It gives insights into how things are going within the network. It takes all the data from the users' endpoints and does an analysis, and it suggests changes as well."
"There are plenty of features this solution provides and the most valuable would be the complete security protection we are receiving. We are provided with similar security that the Palo Alto AWS solution has. This includes features such as a firewall and machine learning AI."
"It's easy to deploy and manage. Even a small group of people can manage a large environment. It's stable, easy to deploy, easy to install—all the stuff."
"SD-WAN is cloud-based and you can manage multiple sites within one single pane of glass."
"It can be used for load balancing and load sharing. It's easy to use and customizable."
"The most valuable feature is the Dynamic Multipath Optimization (DMPO), which allows the customer to maintain and monitor their link quality in real-time."
"The most valuable feature of VMware SD-WAN is security. Additionally, the integration and configuration are easier to do than with other solutions, such as Cisco."
"It's scalable."
"I have found the dynamic multipoint protocol(DNPO) most useful because it can tell you which is the best circuit to use for different types of traffic."
"In my experience, the setup process has been fairly straightforward."
"From the analysis that we've done, they do seem to be maybe a step behind in trying to enter the market with a new solution. But when they do pick up, they do come out with some good products."
"We just submitted an enhancement request reflecting the main area we want to see improvement in; the APIs. Currently, we're able to build dashboards, but it's somewhat backward because we use our MDM API to create them. Lookout should provide API to customers so we can query our data and use it in our cloud, and this is the only outstanding area for improvement with the product right now."
"Lookout was moving into the SSE space. And so their work on SecureWeb Gateway and SD-WAN is still sort of evolving."
"The stability depends on the service from where you access it. Because sometimes, the place you are in, you have Gateway. You don't have Gateway. The gateway is overutilized. At the end, you need to go through their gateways. And this is the key point here. You have a tracking point. If it's not well orchestrated, and it scales up as you add more to the existing team, you will suffer"
"It would be nice to manage Prisma Access through the cloud instead of through Panorama. You can use the cloud version to monitor Prisma Access, but it doesn't have all the features yet, and it's not 100% done."
"We are using the SaaS offering. We use our applications for microservices. We use Twistlock to scan containers, and it displays these results in Prisma, which is a good feature because we can see vulnerabilities with respect to these containers. We can see everything in a very detailed manner. However, when you have different environments for a single application, such as DEV, QA, PROD, and TEST, all these environments run multiple containers, which can lead to a very high number of containers. In such a scenario, it shows you the alerts for all those containers that have vulnerabilities. If you show the results of all the containers that share the same image, it is not going to add any value. Therefore, they should narrow down the alerts based on a container. It should show information for a single container. Otherwise, the person who is looking at the results gets the impression that he has to fix all these issues. This is something that they can improve."
"They could add more flexibility and improve product performance."
"The documentation is generally good, but they could provide a more detailed description of all the configuration steps. I have to search for information or call support. Palo Alto could add more knowledge base articles about configuration with screenshots and walkthroughs. That would be helpful. When configuring a product, you want to see examples of how it is done."
"One thing that would help is if we could get a guide. With Cisco, for example, you can just type the problem regarding your Cisco product and you will easily get your solution. In Palo Alto, however, it's not easy to find the solutions."
"While Palo Alto has understood the essence of building capabilities around cloud technology and have come up with a CASB offering, that is a very new product. There are other companies that have better offerings for understanding cloud applications and have more graceful controls. That's something that Palo Alto needs to work on."
"The product's current price is an area of shortcoming where improvements are required."
"When it comes to integration mechanisms, Prisma SaaS does not support reverse proxy type of integrations."
"The solution doesn't offer failover between their own devices. If I want to, I should be able to put the two devices at the side, so there can be a failover."
"There is room for improvement in the pricing."
"The cost is a little bit high."
"In an upcoming release, the solution can be more functional and have additional features."
"Reporting is an area that can be improved, as there are some features that are lacking with the reporting aspect."
"The security of the firewall should be improved. It would be a good idea to have a standalone product with better security."
"In the future, we would like to have more capacity using this solution as there are limitations on the VCE. For example, only 50 tunnels can be supported currently but we would like to have 200 tunnels using the VeloCloud VCE device."
"Implementing VMware is much more difficult, time-consuming, and expensive than implementing Fortinet or Check Point."
More Prisma Access by Palo Alto Networks Pricing and Cost Advice →
Prisma Access by Palo Alto Networks is ranked 1st in Secure Access Service Edge (SASE) with 59 reviews while VMware SD-WAN is ranked 8th in Secure Access Service Edge (SASE) with 51 reviews. Prisma Access by Palo Alto Networks is rated 8.2, while VMware SD-WAN is rated 8.2. The top reviewer of Prisma Access by Palo Alto Networks writes "Integration with Palo Alto platforms such as Cortex Data Lake and Autofocus gives us visibility into our attack surface". On the other hand, the top reviewer of VMware SD-WAN writes "To fully utilize cloud vendors' hardware networking, Microsoft and VMware support everything". Prisma Access by Palo Alto Networks is most compared with Netskope , Zscaler Zero Trust Exchange, Cisco Umbrella, Zscaler Internet Access and Prisma SD-WAN, whereas VMware SD-WAN is most compared with Cisco SD-WAN, Fortinet FortiGate, Meraki SD-WAN, Cato SASE Cloud Platform and Netskope . See our Prisma Access by Palo Alto Networks vs. VMware SD-WAN report.
See our list of best Secure Access Service Edge (SASE) vendors.
We monitor all Secure Access Service Edge (SASE) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.