• Home
  • NetWitness Platform vs. Palo Alto Networks WildFire

NetWitness Platform vs Palo Alto Networks WildFire vs SonicWall TZ comparison

Cancel
You must select at least 2 products to compare!
NetWitness Logo

NetWitness Platform

Read 36 NetWitness Platform reviews
1,183 views|721 comparisons
74% willing to recommend
Palo Alto Networks Logo

Palo Alto Networks WildFire

Read 58 Palo Alto Networks WildFire reviews
3,787 views|2,591 comparisons
90% willing to recommend
SonicWall Logo

SonicWall TZ

Read 78 SonicWall TZ reviews
12,752 views|11,608 comparisons
88% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Log Management
April 2024
Executive Summary

We performed a comparison between NetWitness Platform, Palo Alto Networks WildFire, and SonicWall TZ based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Datadog, Wazuh and others in Log Management.
To learn more, read our detailed Log Management Report (Updated: April 2024).
Download the complete report
768,415 professionals have used our research since 2012.
Featured Review
Nilesh Bhate
Streamlined solution that's easy to implement
Over time, NetWitness Logs and Packets has matured from a boxed solution with multiple parts to the current, more streamlined version for which we... Read more →
JeffReese
Well priced with great updates and competitive technology
Most competitors call themselves a layer seven inspection device yet are not in the true sense able to do this task as well as Palo Alto. Some... Read more →
Joydeep Dey
Easy to maintain, stable, and scalable
The solution has helped streamline our internet usage. Unnecessary sites are blocked. The solution has increased the productivity of the employees,... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that.""The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools.""Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports.""The most valuable feature is the correlation. It can report in real-time and monitor the management.""Their technical support responds quickly and are knowledgable.""The most valuable features are its ingestion of logs and raising of alerts based on those logs.""NetWitness Platform is valuable for creating rules that the solution must detect.""It's quite economical compared to other solutions in the market."

More NetWitness Platform Pros →

"My primary use case for this solution is for a secure gateway.""I like the analysis they apply to the unknown files, and I think they have good technology to use as a sandboxing tool. I didn't find something similar to WildFire in the marketplace.""Detailed reporting on analysis of content. The inspections are easily applied to security policy profiles and profile groups, and may be assigned on a per-rule basis.""It has a user-friendly interface.""It helps us when segmenting and securing the network and all sort of technologies, all sort of next generation needs. It's next generation phases of firewall like anti-virus, sandboxing, wifi, and VPN.""Using WildFire has reduced the number of viruses and the amount of malware that comes into our system, which means that I don't have to rely on the end-users to identify it.""The most valuable features of Palo Alto Networks WildFire are the good URL and file analysis that uses artificial intelligence. It has different interfaces, such as rest, SMTP protocol, and HTTPS. The Security incidents and event management are very good. Additionally, there are many file types that are supported and there is no limit to the number of files it can handle simultaneously. It integrates well with SIEM solutions.""Stability is never a concern."

More Palo Alto Networks WildFire Pros →

"I like the firewall product, the security server, and the content filter.""I have found this solution to be easier to use when compared to other products, such as those offered by Cisco.""It is very stable with no issues. The firewall's been up for the past 35 days non-stop. It's performed great. It has performed as it should perform.""I find the security we are able to do with the policies to be valuable. The monitoring is valuable as well.""SonicWall TZ is stable.""SonicWall TZ is very user-friendly and has network MAC binding. Additionally, the firewall works well.""User-friendly firewall solution which scales well, is stable, and has high availability.""The features that we have found most valuable in SonicWall TZ are the intrusion and brute force attack prevention."

More SonicWall TZ Pros →

Cons
"We have encountered issues with unresolved crashes.""The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too.""Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance.""The solution should have more integration capabilities with different platforms.""An area for improvement would be better automation and more inbuilt use cases.""It is not so easy to customize this product.""There are instances where you try to run the reports and then it does not give you the desired outcome.""RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."

More NetWitness Platform Cons →

"The cost of the solution is excessively high.""There are some formats that the solution cannot support .""In the future, I would like to see more automation in the reporting.""The system performance degrades after the solution has been deployed for some time. The data that it gives us becomes a little bit slow. When you try to get some data for troubleshooting, it seems like it's working hard to extract that data.""​They provide a medium level of technical support.""The solution can improve its traffic management.""As a firewall and 360 degrees of security, there needs to be more maturity.""In terms of what I'd like to see in the next release of Palo Alto Networks WildFire, each release is based on malware that has been identified. The key problem is an average of six months from the time malware is written to the time it's discovered and a signature is created for it. The only advice that I can give is for them to shorten that timeframe. I don't know how they would do it, but if they shorten that, for example, cut it in half, they'll make themselves more famous."

More Palo Alto Networks WildFire Cons →

"I would like to see a SonicWall integration with the DLP tool, this would be interesting. Data Loss Prevention integration.""The log analyzer in SonicWall TZ is something that they need to improve upon.""I currently have two of the issues from SonicWall. One issue is that the IP is not the public IP. Sometimes it moves to an alternate source and I have to refresh the new IP then we can go on.""SonicWall TZ can improve the UI application and when you create any net policies or any new policy, it will not sync or work properly.""The dashboard needs to be improved.""I would like to see more integration with other platforms.""There can be an improvement in analysis and reporting. We need enhancement on the reporting side.""Its reporting can be improved. Currently, we cannot directly get the user names. It only shows the IP, which makes it a bit confusing because we need to use the IP to find the user. If we could directly get the name of the user, it would be better."

More SonicWall TZ Cons →

Pricing and Cost Advice
  • "It’s cheaper to run virtual machines in a VMware environment."
  • "The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."
  • "It is cheap."
  • "The licenses are good but the cost is very expensive."
  • "This is a pricey solution; it's not cheap."
  • "We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
  • "Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
  • "Our license is for one year."

    • More NetWitness Platform Pricing and Cost Advice →

  • "It IS a bit expensive, but I think you get what you pay for. Value is there."
  • "It's not particularly cheap, but it is absolutely worth it."
  • "The pricing and licensing option should be categorized for various countries such as for Bangladesh."
  • "It is expensive, a feature more accessible to enterprise class customers, but provides an enhanced possibility that Zero- or near-Zero-day threats may be identified and mitigated. The cost of the product weighed against the potential impact of even one successful crypto malware-type exploit may justify the expense."
  • "​More expensive than other firewalls.​"
  • "The pricing is OK, it is not too expensive."
  • "It is a reasonable price compared to other solutions on the market."
  • "It's pretty expensive but with respect to value for money, it's okay."

    • More Palo Alto Networks WildFire Pricing and Cost Advice →

  • "Getting licenses in our country, Ghana, is not easy. Though, once we have them, adding them is quick (about a day)."
  • "SonicWall has authorized distributors in our country. They have about two or three distributors in the country, so it makes it a bit easier. What we do is to request a quotation from these distributors, then we do a value for money analysis and see which one of them is giving us a competitive price."
  • "The pricing was a factor for us, and we felt that the price was good."
  • "The product pricing is relatively good, compared to other products, including the licenses."
  • "Licensing costs have been around $2,000. There are no other costs above the standard licensing fees."
  • "License renewals come in around $35,000 to $45,000."
  • "The price is high compared to some other solutions."
  • "Its pricing is okay as compared to other solutions."

    • More SonicWall TZ Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Log Management solutions are best for your needs.
    See Recommendations
    768,415 professionals have used our research since 2012.
    Comparison Review
    Vinod Shankar
    HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
    We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →
    Questions from the Community
    What do you like most about NetWitness Platform?
    Top Answer:The product's initial setup phase was not at all difficult.
    Read all 26 answers   →
    What is your experience regarding pricing and costs for NetWitness Platform?
    Top Answer:The product price was reasonable for my region and the market.
    Read all 16 answers   →
    What needs improvement with NetWitness Platform?
    Top Answer:From an improvement perspective, the NetWitness Platform needs to release new features and improve in areas like log… more »
    Read all 25 answers   →
    How does Cisco Firepower NGFW Firewall compare with Palo Alto Networks Wi...
    Top Answer: The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Read all 2 answers   →
    Which is better - Wildfire or FortiGate?
    Top Answer:FortiGate has a lot going for it and I consider it to be the best, most user-friendly firewall out there. What I like… more »
    Read all 2 answers   →
    How does Cisco ASA Firewall compare with Palo Alto's WildFire?
    Top Answer:When looking to change our ASA Firewall, we looked into Palo Alto’s WildFire. It works especially in preventing advanced… more »
    Would you choose Fortinet Fortigate or Sonicwall TZ?
    Top Answer:I’ll say it depends on your needs. Fortinet FortiGate and SonicWall TZ are both next-gen firewalls (NGFW) with similar… more »
    What do you like most about SonicWall TZ?
    Top Answer:The most valuable feature of SonicWall TZ is the double authentication, where it asks for one password and again asks… more »
    Read all 62 answers   →
    What is your experience regarding pricing and costs for SonicWall TZ?
    Top Answer:The solution is moderately priced, where it's neither cheap nor expensive.
    Read all 44 answers   →
    Ranking
    20th
    out of 95 in Log Management
    Views
    1,183
    Comparisons
    721
    Reviews
    10
    Average Words per Review
    458
    Rating
    7.2
    3rd
    out of 37 in Advanced Threat Protection (ATP)
    Views
    3,787
    Comparisons
    2,591
    Reviews
    17
    Average Words per Review
    372
    Rating
    8.5
    12th
    out of 59 in Firewalls
    Views
    12,752
    Comparisons
    11,608
    Reviews
    12
    Average Words per Review
    347
    Rating
    8.7
    Comparisons
    Also Known As
    RSA Security Analytics
    Dell SonicWALL TZ
    Learn More
    NetWitness
    Video Not Available
    Palo Alto Networks
    SonicWall
    Overview

    NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

    Palo Alto Networks WildFire is a highly effective cloud-based advanced threat protection (ATP) solution that organizations in a wide variety of fields trust to help them keep safe from digital threats. It is designed to enable businesses to confront even the most evasive threats and resolve them. It combines many techniques to maximize the level of threat protection available to users.

    Palo Alto Networks WildFire Benefits

    Some of the ways that organizations can benefit by choosing to deploy WildFire include:

    Proactive real-time threat prevention. Organizations that utilize WildFire can take a proactive approach to their network security. Wildfire’s security scanning software is supported by powerful automation that enables it to run 180 times faster than other similar solutions. It also leverages machine learning to spot and address two times more malware monthly than its competitors. Users can solve issues as they arise, which prevents them from suffering severe harm.

    A holistic approach to security. WildFire leverages many of the security features and characteristics that can be found in some of the most effective security solutions in a way that provides users with a powerful protective blanket. It combines such things as machine learning, dynamic and static analysis, and a custom-built analysis environment, and enables users to cover many different potential avenues of attack. In this way, organizations can easily detect and prevent even the most sophisticated threats from harming them.

    Reduce overhead costs. Using WildFire cuts the expenses that a business incurs. Its architecture is based in the cloud and, as a result, users do not have to purchase hardware to run it. Additionally, those users do not have to pay anything more than a product subscription fee. They can scale it up as they wish and incur no additional costs.

    Palo Alto Networks WildFire Features

    Some of the many features WildFire offers include:

    Third-party integrations. WildFire gives users access to integrations that can enable them to combine Wildfire’s security suite with outside tools. If an organization thinks that they are missing something, they can easily use Wildfire’s third-party integrations to bolster their capabilities. These integrations can connect to many different types of tools, like security information or event management systems.

    URL filtering. Organizations can use a URL filtering feature to safeguard themselves against known threats. When this feature is active, it will scan for traffic coming from specific URLs that are known to be malicious. This keeps them one step ahead of those threats that they know about.

    Deep analytics. Wildfire comes with the ability to provide users with a detailed analysis of any threat that it finds across all of their network environments. It gives users insight into everything from their natures to the actions that they have performed.

    Reviews from Real Users

    WildFire is a solution that stands out when compared to its primary competitors. Two major advantages that it offers are the high speeds at which it can analyze network traffic for threats and the accuracy with which it can pick out genuine threats from false positives.

    Ahmad Z., the principal consultant at Securelytics, writes, “The analysis is very fast. The intermittent is a millisecond and has a speedy response time.”

    Christopher B., the senior systems administrator at a government agency, says, “It gives a more accurate assessment of a virus in terms of whether it's truly a virus, malware, or a false positive. We have some legacy software that could pop up as being something that is malware. WildFire goes through and inspects it, and then it comes back and lets us know if it's a false positive. Usually, when it finds out that it's not a virus, it lets us know that it's benign, and it can exclude it from that scan, which means I don't even have to worry about that one popping up anymore.”

    The secure, sophisticated SonicWALL TZ is widely deployed at small businesses, retail, government, remote sites and branch offices. It combines high-performance intrusion prevention, malware blocking, content/URL filtering and application control.
    Sample Customers
    Los Angeles World Airports, Reply
    Novamedia, Nexon Asia Pacific, Lenovo, Samsonite, IOOF, Sinogrid, SanDisk Corporation
    AeroM_xico Delta TechOps, Unimat
    Top Industries
    REVIEWERS
    Comms Service Provider24%
    Financial Services Firm24%
    Computer Software Company24%
    Manufacturing Company10%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company15%
    Government10%
    Insurance Company6%
    REVIEWERS
    Financial Services Firm18%
    Computer Software Company12%
    Government12%
    Comms Service Provider9%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Government9%
    Financial Services Firm9%
    Manufacturing Company7%
    REVIEWERS
    Construction Company12%
    Healthcare Company12%
    Computer Software Company7%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Comms Service Provider10%
    Manufacturing Company6%
    Retailer6%
    Company Size
    REVIEWERS
    Small Business26%
    Midsize Enterprise17%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise10%
    Large Enterprise67%
    REVIEWERS
    Small Business42%
    Midsize Enterprise20%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business23%
    Midsize Enterprise15%
    Large Enterprise62%
    REVIEWERS
    Small Business64%
    Midsize Enterprise19%
    Large Enterprise17%
    VISITORS READING REVIEWS
    Small Business43%
    Midsize Enterprise16%
    Large Enterprise41%
    Buyer's Guide
    Log Management
    April 2024
    Download Free Report
    Find out what your peers are saying about Splunk, Datadog, Wazuh and others in Log Management. Updated: April 2024.
    DOWNLOAD NOW
    768,415 professionals have used our research since 2012.