We performed a comparison between NetWitness Platform and Palo Alto Networks VM-Series based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution is really scalable for the high-end power, enterprise customer."
"It's quite economical compared to other solutions in the market."
"NetWitness Platform is valuable for creating rules that the solution must detect."
"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."
"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."
"Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements."
"The newer 11.5 version that my team is using has found it to have good mapping."
"The product has a user-friendly interface and a valuable feature for threat intelligence integration."
"A solid operating system with all the necessary data center security features."
"The most valuable features are security and support."
"The feature that I have found the most useful is that it meets all our requirements technically."
"In Palo Alto the most important feature is the App-ID."
"The most valuable feature is that you can control your traffic flowing out and coming it, allowing you to apply malware and threat protection, as well as vulnerability checks."
"Embedding it into my application development lifecycle prevents data loss and business disruption, allowing the adoption to operate at the speed of my AWS Cloud."
"We can monitor the traffic manually and detect threats. Additionally, we can block different IP addresses and URLs."
"It gives us the ease that we are secure. We have set up the proper things that help make our data safe."
"Health monitoring of the event sources and devices."
"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10."
"The solution should have more integration capabilities with different platforms."
"There are instances where you try to run the reports and then it does not give you the desired outcome."
"The initial setup is very complex and should be simplified."
"I would like a way to do everything programmatically, or be able to copy the configs from different prices at different levels."
"The solution's licensing could be improved, and training should be included before installation."
"The solution needs to have more easily searchable details or documentation about it online, so it's easier to Google if you have queries."
"All areas need improvement: manufacturing, education, financial, etc."
"It would be good if the common features work consistently in physical and virtual environments. There was an integration issue in the virtual deployment where it didn't report the interface counters, and we had to upgrade to the latest version, whereas the same thing has been working in the physical deployment for ages now. It seems that it was because of Azure. We were using VMware before, and we didn't have any such issues. We do see such small issues where we expect things to work, but they don't because of some incompatibilities. There also seems to be a limitation on how to do high availability in a virtualized environment. All features should be consistently available in physical and virtual environments. It is not always easy to integrate Palo Alto in the network management system. We would like to be able to compare two network management systems. They can maybe allow monitoring an interface through the GUI to create a reference or do a baseline check about whether your network monitoring system is actually giving you the correct traffic figures. You need traffic figures to be able to recognize the trends and plan the capacity."
"In the next release, I would like to see better integration of multi-factor authentication vendors."
"Its web interface is a bit outdated, and it needs to be updated. They can also improve the NAT functionality. We have had issues with the NAT setup."
"Just sometimes it can be a bit sluggish navigating through pages. That is just purely because of Java."
NetWitness Platform is ranked 20th in Log Management with 36 reviews while Palo Alto Networks VM-Series is ranked 10th in Firewalls with 52 reviews. NetWitness Platform is rated 7.4, while Palo Alto Networks VM-Series is rated 8.6. The top reviewer of NetWitness Platform writes "Can find out if there is lateral movement, but integration and workflow need improvement". On the other hand, the top reviewer of Palo Alto Networks VM-Series writes "Many features are optimized for troubleshooting real-time scenarios, saving a lot of time". NetWitness Platform is most compared with Splunk Enterprise Security, RSA enVision, IBM Security QRadar, Microsoft Sentinel and Cisco Secure Network Analytics, whereas Palo Alto Networks VM-Series is most compared with Azure Firewall, Fortinet FortiGate-VM, Fortinet FortiGate, Cisco Secure Firewall and Palo Alto Networks NG Firewalls. See our NetWitness Platform vs. Palo Alto Networks VM-Series report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.