Please share with the community what you think needs improvement with Palo Alto Networks Threat Prevention.
What are its weaknesses? What would you like to see changed in a future version?
We use four Palo Alto solutions in stand-alone mode and but it's hard to use when I use it in Panorama. Palo Alto's maintenance needs to be improved.
The documentation needs to be improved. I need better information about how to configure it and what the best practices are.
The solution needs to improve Reverse DNS functionalities. Right now, when you check the IP address, it tells all. It assumes that that IP address is locally available on the inside. When the request is going back to me it's supposed to do what we call rights. Instead of giving me the public IP address in my response, it's supposed to give me the private IP address or the local IP address so that I can reach the device locally. That's the challenge right now. Sometimes when you want to group a set of ports, and communicate with Palo Alto, you cannot group TCP and UDP ports together. This needs to be adjusted.
The price of licenses should be lowered to make it less costly to scale our solution. I would like to see consolidated licensing for on-premises solutions. This would give us all of the features available for the one box.
I think they can use some improvement on FID. There are lots of false positives and those can be eradicated. Sometimes you can't identify a 10-year-old doc, but they can probably update those signatures and false positives, so it would be helpful and save us a lot of time.
The IPS can be improved on the solution. The itineration, for example. Also, if additional features, like SD Wan, etc. can be added. This would be helpful. Other additional features that could be added include Individual Traps. In terms of enhancement for overall protection, we would like more Traps or other solutions that are developing within the firewall. The solution needs to improve its local technical support services. There is no premium support offered in our market.
It's not so easy to set up a test environment because it's not so easy to get the test license. The vendor only gives you 90 days for a test license; it's a tough license to get.
The organization mail security solutions could be improved. There is no mail security solution available.
In most areas, Palo Alto Threat Prevention is a fine choice. The application is very good. The most important feature we find to be the NCR Reader. It is best for application security. I don't know how they could improve it more. The application is already working fine with good results. Support is really good with Palo Alto and we are resellers of the software to our customers. They will let us know how they find it valuable after we implement it. Most of our customers have found Palo Alto Threat Prevention very good to use. We have a number of customers in the market. Everybody is happy with the product. Overall, Palo Alto Threat Prevention doesn't need much more. From a general point of view, you get everything. If it is content filtering, it should be no problem.
Right now we are focusing on email. If Palo Alto can increase the features related to email filtering and the new malware, it would help us protect our systems.
What do you like most about Palo Alto Networks Threat Prevention?
Thanks for sharing your thoughts with the community!
Let the community know what you think. Share your opinions now!