Discover what’s really driving the shift toward unified security
Discover how geopolitical tensions are fueling advanced cyber campaigns
Is the Quantum Threat Closer Than You Think?
  • Sign In
    • Customer
    • Partner
    • Employee
    • Login to download
    • Join us to become a member
  • EN
  • magnifying glass search icon to open search field
  • Contact Us
  • What's New
  • Get Support
  • Under Attack?
Palo Alto Networks logo
  • Products
  • Solutions
  • Services
  • Partners
  • Company
  • More
  • Sign In
    Sign In
    • Customer
    • Partner
    • Employee
    • Login to download
    • Join us to become a member
  • EN
    Language
  • Contact Us
  • What's New
  • Get support
  • Under Attack?
  • Demos and Trials

What We Do

Stateful inspection and port blocking are useless in today’s landscape.

Networks have become more vulnerable because of fundamental shifts in the application landscape, user behavior, cybersecurity dynamics, and infrastructure. SaaS, Web 2.0, social media, and cloud-based applications are everywhere. Mobile devices, cloud, and virtualization are fundamentally changing your network architecture. The way your users consume and your company manages IT has made you more and more susceptible to security breaches and compromised data.

Legacy firewalls and UTMs are incapable of enabling the next generation of applications, users, and infrastructures. That's because they classify traffic based only on ports and protocols. For example, traditional products identify most of your web traffic as simply HTTP coming through port 80, with no information on the specific applications associated with that port and protocol. But this problem is not limited to port 80.

These applications are increasingly using encrypted SSL tunnels on port 443, and use clever evasive tactics to disguise themselves or use port-hopping to find any entry point through your firewall. Legacy firewalls and UTMs cannot safely enable these applications. At best, they can attempt to prevent the application from entering the network, which stifles your business and restricts you from benefitting from innovation.

 

Time for a fundamentally new approach to network security: a next-generation firewall that safely enables applications – and your business.

We offer you real innovation in the firewall, enabling the unprecedented enablement of applications and control over content – by user, not just IP address – at up to 20Gbps with no performance degradation. Based on our patent-pending App-ID™ technology, our next-generation firewall enables applications – regardless of port, protocol, evasive tactic, or SSL encryption – and scans content to stop targeted threats and prevent data leakage. For the first time, you can safely enable the use of applications, maintain complete visibility and control, and significantly reduce your total cost of ownership through network security simplification.

 

Unique capabilities available only in our next-generation firewall:

The only firewall to classify traffic based on the accurate identification of the application, not just port/protocol information.

The only firewall to identify, control, and inspect your SSL encrypted traffic and applications.

The only firewall with real-time (line-rate, low-latency) content scanning to protect you against viruses, spyware, data leakage, and application vulnerabilities based on a stream-based threat prevention engine.

The only firewall to provide graphical visualization of applications on your network with detailed user, group, and network-level data categorized by sessions, bytes, ports, threats, and time.

The only firewall with line-rate, low-latency performance for all of your services, even under load.

The only firewall capable of delivering a logical perimeter for your mobile users.

The only firewall to identify unknown malicious files, often used in targeted attacks, by directly and automatically executing them in a virtual cloud-based environment.

 


Get the latest news, invites to events, and threat alerts

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement.

Products and Services

  • AI-Powered Network Security Platform
  • Secure AI by Design
  • Prisma AIRS
  • AI Access Security
  • Cloud Delivered Security Services
  • Advanced Threat Prevention
  • Advanced URL Filtering
  • Advanced WildFire
  • Advanced DNS Security
  • Enterprise Data Loss Prevention
  • Enterprise IoT Security
  • Medical IoT Security
  • Industrial OT Security
  • SaaS Security
  • Next-Generation Firewalls
  • Hardware Firewalls
  • Software Firewalls
  • Strata Cloud Manager
  • SD-WAN for NGFW
  • PAN-OS
  • Panorama
  • Secure Access Service Edge
  • Prisma SASE
  • Application Acceleration
  • Autonomous Digital Experience Management
  • Enterprise DLP
  • Prisma Access
  • Prisma Access Browser
  • Prisma SD-WAN
  • Remote Browser Isolation
  • SaaS Security
  • AI-Driven Security Operations Platform
  • Cloud Security
  • Cortex Cloud
  • Application Security
  • Cloud Posture Security
  • Cloud Runtime Security
  • Prisma Cloud
  • AI-Driven SOC
  • Cortex XSIAM
  • Cortex XDR
  • Cortex XSOAR
  • Cortex Xpanse
  • Unit 42 Managed Detection & Response
  • Managed XSIAM
  • Threat Intel and Incident Response Services
  • Proactive Assessments
  • Incident Response
  • Transform Your Security Strategy
  • Discover Threat Intelligence

Company

  • About Us
  • Careers
  • Contact Us
  • Corporate Responsibility
  • Customers
  • Investor Relations
  • Location
  • Newsroom

Popular Links

  • Blog
  • Communities
  • Content Library
  • Cyberpedia
  • Event Center
  • Manage Email Preferences
  • Products A-Z
  • Product Certifications
  • Report a Vulnerability
  • Sitemap
  • Tech Docs
  • Unit 42
  • Do Not Sell or Share My Personal Information
PAN logo
  • Privacy
  • Trust Center
  • Terms of Use
  • Documents

Copyright © 2025 Palo Alto Networks. All Rights Reserved

  • Youtube
  • Podcast
  • Facebook
  • LinkedIn
  • Twitter
  • Select your language