Palo Alto Networks WildFire Review

The deployment of Wildfire was surprisingly easy but inspection over different protocols needs to be improved.


What is most valuable?

Being able to discover malicious files unknown to most AV vendors.

How has it helped my organization?

It has allowed me to stop new attacks before they could gain a foothold in my network.

What needs improvement?

  • Inspection over different protocols (not just HTTP/FTP)
  • Inspecting more file types
  • Providing information back to the community that it uses to support its product.

For how long have I used the solution?

I've used it for three years. However, my current company isn't using the product. I took a different engineering route into the company and I decided to use other protection solutions and not Wildfire.

What was my experience with deployment of the solution?

The deployment of Wildfire was surprisingly easy.

What do I think about the stability of the solution?

Wildfire itself was a very stable product.

What do I think about the scalability of the solution?

I never had any issues with scalability. When I enabled it, it seemed to work in the environment that the firewall was already servicing.

How are customer service and technical support?

Customer Service:

Great when I was at a large company but average or less than average at a small company.

Technical Support:

Overall their support people are better than most tech companies.

Which solution did I use previously and why did I switch?

There was no solution in this space before Wildfire. Both FireEye and Wildfire came onto the market right around the same time.

How was the initial setup?

It was straightforward as I could, literally, turn on the firewall settings in five minutes or less.

What about the implementation team?

You really don't need to pay to turn it on. The configuration is very simple.

What was our ROI?

There are two levels of Wildfire.

  1. The free version which is great, so I would guess there is no ROI on this version
  2. Then there is the subscription version of the service and this is a very affordable yearly subscription per firewall

What's my experience with pricing, setup cost, and licensing?

Initially, the product doesn't cost anything for the first tier of usage you can prove the product before buying it.

Which other solutions did I evaluate?

  • FireEye
  • Blue Coat
  • ProofPoint.
  • Even as the more the list of products I look at each year is pretty long.

What other advice do I have?

If you're running Palo Alto firewalls there is no reason not to use it at the free level. Once you have run it for a while at the basic level, you can make an educated decision if it's worth paying for the subscription (it is).


Disclosure: I am a real user, and this review is based on my own experience and opinions.

1 visitor found this review helpful
Add a Comment
Guest
2 Comments

author avatar
Real User

I administer a set of PA3020's. Wildfire is a protection feature which helps organizations defend against zero day exploits. It's checking hashes of files as they flow through the unit. If the hash observed is unrecognized, it's sent to the PA cloud for analysis. Within minutes of an infected file being released into the wild, the subscription service updates all firewalls subscribing. It's a cost effective must have feature to mitigate todays threat landscape.

author avatar
Senior Consultant (Palo Alto Networks)
Vendor

Best bit is out of 27000 customers of Palo Alto Networks, you are getting intel from every single PA appliance which resembles to millions of users' data. The time for wait is about to drop to 5min from 15min.