Palo Alto Networks SD WAN & SASE Cybersecurity Solutions

Palo Alto Networks SD WAN & SASE Cybersecurity Solution: Comparisons, Review, Benefits, Use Cases, Pros & Cons

Author: Netify Research Team

If you have questions about Palo Alto Networks and how their capability is aligned to your needs, email the Netify research team. UK: uk@netify.co.uk North America: northamerica@netify.com

(Please use the UK email for ROW - Rest of the World - questions or inquiries)

About Palo Alto Networks

Palo Alto Networks acquired CloudGenix (a software company founded in 2013) in 2020.  Now, the company is headquartered in San Jose, California, North America and offers SD WAN and SASE solutions. The company were awarded “Customer’s Choice” in the 2021 ‘Voice of the Customer’: WAN Edge Infrastructure by Gartner Peer Insights. Palo Alto’s SASE solution is used by over 2500 enterprises globally. As of 20th July 2021, Palo Alto partnered with Google Cloud to provide native threat detection for virtual private clouds through Cloud IDS, a joint network threat detection service. Their Unit 42 team leverages over 200 threat researchers as part of their threat intelligence support to enhance their products and provide services in the case of advanced attacks.

What is the Palo Alto Networks SD WAN Solution?

Palo Alto deliver ‘next generation’ Prisma SD WAN, delivering and connecting all branch services from the cloud. The aim is to replace legacy SD WAN platforms with Palo Alto SD WAN which uses machine learning to simplify overall network operations by eliminating 99% of trouble tickets. 

Configuration-Based Key Features:

• Cloud-Delivered Branch: All branch services are delivered from the cloud, including security, networking, voice and more. This simplifies WAN management, as all applications are integrated even in different locations.
• Application-Defined: SLAs are delivered for all applications including Cloud, SaaS and UCaaS.
• Application Visibility: Includes Layer-7 intelligence that enables simpler traffic engineering and network policy creation. 
  

Security-Based Key Features:

• See the CloudGenix SASE security solution here. 
  

Performance-Based Key Features:

• Router Modernization: Legacy routers can be upgraded to lightweight branch appliances, with zero-touch provisioning to improve branch deployment services.
• Autonomous Network Operations: Prisma SD WAN leverages artificial intelligence of IT operations (AIOps) and machine learning with data science methodologies to automate problem avoidance and simplify network operations.

What is the Palo Alto Networks SASE security solution?

The Prisma Access SASE security solution is designed to replace legacy SASE architectures. The security solution converges next generation SASE and next generation SD WAN into one cloud-delivered platform, securing applications used by workforce users in the branch office, remote or from home. Multiple security products are combined into one integrated service to reduce complexity whilst increasing agility. 

SASE Features: 

• Firewall as a Service (FWaaS): Delivered as a cloud-based service, FWaaS provides next generation firewall (NGFW) capabilities and hyper scale, with security features such as advanced threat protection (ATP), intrusion prevention system (IDS), domain name system (DNS) and web filtering.
• Cloud Secure Web Gateway (SWG): Deployed from the cloud, SWG enables web security for any authorized device, which could be used in a remote location. Performs malicious content inspection, URL filtering, web visibility and web access controls.
• Zero Trust Network Access (ZTNA): Provides secure access to services and applications based on pre-set access control policies.
• Integrated Cloud Access Security Broker (CASB): Cloud-based, integrated CASB does not require a broker, as it is easily deployed due to it being integrated into an existing security stack. It is designed to protect sensitive data which is being transported between company networks, users and SaaS providers. It monitors and manages user behavior to minimize shadow IT risks, whilst securing applications, data and users on-premises and in remote locations and the cloud.

How does Palo Alto Networks access cloud vendors?

The Prisma Cloud Security platform offers comprehensive cloud security, which extends to AWS, Azure and Google Cloud. Palo Alto are an AWS partner, offering VM Series Cloud Migration, SD WAN Connectivity to AWS and hybrid cloud. They are a Microsoft Azure Gold partner in Application Development and Cloud Platform, and a Silver partner in Security. They also partner with Google Cloud and offer Managed Cloud Security through a partnership with Telus.

Cloud Access Features: 

• Cloud Security and Posture Management: Maintains compliance across public clouds whilst monitoring posture and detecting and responding to threats.
• Cloud Infrastructure Entitlement Management: Secures identities and enforces permissions across workloads and cloud resources.
• DevSecOps: Integrates security with developer tools whilst securing configuration and scan codes.
• Cloud Workload Protection: Secures serverless functions, hosts and containers across the application lifecycle.
• Cloud Network Security: Enforces micro-segmentation and secure trust boundaries and provides network visibility.

Does Palo Alto Networks offer WAN acceleration and optimization?

Palo Alto do not provide WAN optimization or acceleration. However, quality of service (QoS) and application routing services are available to improve performance.

How does Palo Alto Networks support remote users?

Users that work from home are supported via Palo Alto’s Okyo Garde appliance. The device is available to both Enterprise as well as Home and Small business. The Enterprise edition provides teleworking staff with an easy-to-use and secure extension of the corporate network. The device uses Zero Trust access and multi-layered protection to deliver enterprise grade security to corporate devices on the home network. The lack of network isolation at an employee’s home and the inability to configure VPN or agents to some corporate devices means that the home environment becomes a significant hazard as the enterprise network becomes vulnerable to cyberattack or loss of sensitive data if an employee’s network is inadequately secured. Okyo Garde offers high performance corporate segments through the use of a mesh-enabled Wi-Fi 6 system and multi layer protection for all corporate devices on the network whilst being orchestrated through a single pane of glass. The home network becomes integrated with Prisma Access to provide SASE security without the need for a datacenter and a minimal deployment time to allow remote workers and IT administrators to attend to other tasks. An employee using the Okyo Garde enterprise edition is also able to set up an optional subscription to secure their own personal home network at no additional cost.

What is the Palo Alto Networks managed, co-managed and DIY services solution?

Palo Alto is available as a managed service through qualified managed security service providers (MSSP).

What Reporting and Management is available via the Palo Alto Networks Portal?

Palo Alto offer customers access to their Customer Support Portal, where assets and support cases can be registered and managed, questions can be answered and the Live Community can be accessed.

What is the Palo Alto Networks SLA?

Below is a table displaying the main focus points of the Palo Alto Networks Service Level Agreement (SLA). 

Support Plans and Services offered: 

Palo Alto End User Support Agreement. (Palo Alto, 2020.) See more at:https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/legal/palo-alto-networks-global-customer-support-services-terms-and-conditions-eusa.pdf

Customer Success Plans and Services Offered: 

Palo Alto End User Support Agreement. (Palo Alto, 2020.) See more at:https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/legal/palo-alto-networks-global-customer-support-services-terms-and-conditions-eusa.pdf