PA-500 Series
Palo Alto Networks’ Enterprise Firewall – PA 500
The Palo Alto Networks’ enterprise firewall PA-500 is ideally suited for Internet gateway deployments within medium to large branch offices and medium sized enterprises to ensure network security and threat prevention. The Palo Alto firewall PA-500 manages network traffic flows with high performance processing and dedicated memory for networking, security, threat prevention, URL filtering and management. Palo Alto Networks’ next-generation firewall’s high speed backplane smoothes the pathway between processors and the separation of data and control plane ensures that management access is always available, irrespective of the traffic load.
Next-Generation Firewalls
- 250 Mbps firewall throughput
- 100 Mbps threat prevention throughput
- 50 Mbps IPSec VPN throughput
- 250 IPSec VPN tunnels and tunnel interfaces
- 7,500 new sessions per second
- 64,000 max sessions
- (8) 10/100/1000
- (1) 10/100/1000 out of band management interface
- (1) 1 RJ-45 console interface
Management Tools
Managing network security can be a difficult task. Keeping up with the latest threats, monitoring the next hacking trend and dealing with adds, moves and changes can make for a very busy day. Inconsistent security device management mechanisms only make the administrator’s life more difficult.
Keeping ease of use and consistency as key development goals, the web interfaces for both Panorama and the individual platforms have the same look and feel, thereby minimizing the learning curve often associated with switching from single-device management to centralized management of multiple next generation firewalls. The Palo Alto Networks management tools make security policy management a straightforward process, using visualization tools, common application names and standard security terminology.
- Panorama provides centralized visibility, control and management over multiple Palo Alto Networks’ firewalls.
- Application Command Center provides a visual summary of the applications traversing the network, categorized by sessions, bytes, ports, threats and time.
- App-Scope gives administrators a comparative view of network activity to help pinpoint erratic behavior.
- Policy editor has a familiar look and feel, allowing administrators to quickly create and deploy networks security policies.
- The application browser enables dynamic access to a wealth of information on applications, including category, purpose, its underlying technology and behavioral characteristic.
- Reporting and logging enables rapid analysis of security incidents, application usage and traffic patterns
- QoS and Real-time Bandwidth Monitoring: Apply traffic shaping policies and monitor bandwidth and session consumption in real-time for applications, users, and more.
Technology
Palo Alto Networks has built a next-generation firewall with several innovative technologies – enabling organizations to fix the firewall. These technologies bring business-relevant elements (applications, users, and content) under policy control on a high performance firewall architecture.
- App-ID is an application identification technology that classifies traffic based on the application – irrespective of port, protocol, SSL encryption, or evasive tactics.
- User-ID is a technology that integrates with Microsoft Active Directory to enable the visibility and control of application by users and groups of users – not just by IP addresses.
- Content-ID is a high performance content inspection engine that prevents a wide range of threats, blocks file transfers, data leakage and controls web surfing.
All of this technology runs on a high-performance, purpose-built platform based on Palo Alto Networks’ Single-Pass Parallel Processing (SP3) Architecture. Unique to the SP3 Architecture, traffic is only examined once, using hardware with dedicated processing resources for security, networking, content scanning and management to provide line-rate, low-latency performance under load.
