Palo Alto Networks Enterprise Firewall PA-820
Next-Generation Firewall for Enterprise Branch Offices and Midsized Businesses
RENEWALS ONLY (This product can no longer be purchased as new firewall)
Looking for sizing recommendation? Take our Firewall Sizing Survey
Please Note: We cannot provide sizing recommendations for Palo Alto firewalls being deployed outside of the United States. Palo Alto firewalls are only available for
licensed businesses (not home users). Palo Alto firewalls cannot be sold outside of the United States excluding Canada. 1 Year minimum of Partner Enabled Backline Support is required for all new Palo Alto firewall purchases
Sorry, this product is no longer available, please contact us for a replacement.
Click here to jump to more pricing!
Overview:
The controlling element of the PA-800 Series ML-Powered Next-Generation Firewall (NGFW) is PAN-OS®, which natively classifies all traffic, inclusive of applications, threats, and content, and then ties that traffic to the user regardless of location or device type. The application, content, and user—in other words, the elements that run your business—then serve as the basis of your security policies, resulting in improved security posture and reduced incident response time.
Classifies all applications, on all ports, all the time- Identifies the application, regardless of port, encryption (SSL or SSH), or evasive technique employed
- Uses the application, not the port, as the basis for all of your safe enablement policy decisions: allow, deny, schedule, inspect and apply traffic-shaping
- Categorizes unidentified applications for policy control, threat forensics or App-ID™ application identification technology development
- Provides full visibility into the details of all TLS-encrypted connections and stops threats hidden in encrypted traffic, including traffic that uses TLS 1.3 and HTTP/2 protocols.
- Deploys consistent policies to local and remote users running on the Windows, Mac OS X, Linux, Android or Apple iOS platforms
- Enables agentless integration with Microsoft Active Directory and Terminal Services, LDAP, Novell eDirectory and Citrix
- Easily integrates your firewall policies with 802.1X wireless, proxies, NAC solutions, and any other source of user identity information
- Threat Prevention—inspects all traffic to automatically block known vulnerabilities, malware, vulnerability exploits, spyware, command and control (C2), and custom intrusion prevention system (IPS) signatures.
- WildFire malware prevention—protects against unknown file-based threats, delivering automated prevention in seconds for most new threats across networks, endpoints, and clouds.
- URL Filtering—prevents access to malicious sites and protects users against web-based threats.
- DNS Security—detects and blocks known and unknown threats over DNS while predictive analytics disrupt attacks using DNS for C2 or data theft.
- IoT Security—discovers all unmanaged devices in your network, identifies risks and vulnerabilities, and automates enforcement policies for your ML-Powered NGFW using a new Device-ID™ policy construct.
Enables SD-WAN functionality
- Easily adopt SD-WAN by simply enabling it on your existing firewalls.
- Enables you to safely implement SD-WAN, which is natively integrated with our industry-leading security.
- Delivers an exceptional end user experience by minimizing latency, jitter, and packet loss.
Palo Alto Networks PA-800 Series next-generation firewall appliances, comprised of the PA-820 and PA-850, are designed to secure enterprise branch offices and midsized businesses.
The controlling element of the Palo Alto Networks PA-800 Series appliances is PAN-OS security operat- ing system, which natively classifies all traffic, inclusive of applications, threats and content, and then ties that traffic to the user, regardless of location or device type. The application, content and user – in other words, the business elements that run your business – are then used as the basis of your security policies, resulting in an improved security posture and a reduction in incident response time.
Performance and Capacities1 |
PA-850 |
PA-820 |
Firewall throughput (App-ID)2, 4 |
2.1/2.1 Gbps |
1.8/1.6 Gbps |
Threat prevention throughput3, 4 |
1.0/1.2 Gbps |
850/900 |
IPsec VPN throughput2, 4 |
1.6 Gbps | 1.3 Gbps |
New sessions per second5 |
13,000 | 8,600 |
Max sessions |
192,000 | 128,000 |
- Performance and capacities are measured under ideal testing conditions.
- Firewall throughput measured with App-ID and User-ID features enabled utilizing 64K HTTP transactions
- Threat prevention throughput measured with App-ID, User-ID, IPS, AntiVirus and Anti-Spyware features enabled utilizing 64K HTTP transactions
- New sessions per second is measured with 4K HTTP transactions
- Adding virtual systems base quantity requires a separately purchased license
Pricing Notes:
- Pricing subject to change without notice.
- Pricing is based on approved deal registration
- We cannot provide sizing recommendations for Palo Alto firewalls being deployed outside of the United States.
Palo Alto firewalls are only available for licensed businesses (not home users). Palo Alto firewalls cannot be sold outside of the United States excluding Canada. 1 Year minimum of Partner Enabled Backline Support is required for all new Palo Alto firewall purchases