Palo Alto Networks PA Series Firewall

Next-generation firewall model families include Palo Alto Networks PA-4000 Series and the PA-2000 Series, along with the newly released PA-500 and range from 250Mbps to 10Gbps in throughput capacity. Palo Alto Networks next-generation firewalls are built on a strong networking foundation, offer a familiar policy management interface and offer unprecedented features for your security infrastructure.

Palo Alto Networks Enterprise Firewall - PA-220R Series

Palo Alto Networks PA-220R is a ruggedized ML-Powered Next-Generation Firewall (NGFW) that brings next-generation capabilities to industrial applications in harsh environments. The PA-220R ruggedized appliance secures industrial and defense networks in a range of harsh environments, such as utility substations, power plants, manufacturing plants, oil and gas facilities, building management systems, and healthcare networks.

PA-220R Firewall

535 Mbps firewall throughput (HTTP/appmix)
320 Mbps Threat Prevention throughput (HTTP/appmix)
550 Mbps IPsec VPN throughput
64,000 Max sessions
4,200 New sessions per second

Palo Alto Networks Enterprise Firewall - PA-400 Series

The world’s first ML-Powered Next-Generation Firewall (NGFW) enables you to prevent unknown threats, see and secure everything—including the Internet of Things (IoT)—and reduce errors with automatic policy recommendations.

The controlling element of the PA-400 Series is PAN-OS®, the same software that runs all Palo Alto Networks NGFWs. PAN-OS natively classifies all traffic, inclusive of applications, threats, and content, and then ties that traffic to the user regardless of location or device type. The application, content, and user—in other words, the elements that run your business—then serve as the basis of your security policies, resulting in improved security posture and reduced incident response times.

PA-400 Firewall

PA-460 Firewall

5.1/4.4 Gbps firewall throughput (HTTP/appmix)
2.1/2.4 Gbps IPsec VPN throughput
400,000 Max sessions
73,000 New sessions per second

PA-450 Firewall

3.6/3.0 Gbps firewall throughput (HTTP/appmix)
1.4/1.6 Gbps IPsec VPN throughput
300,000 Max sessions
51,000 New sessions per second

PA-445 Firewall

2.9/2.2 Gbps firewall throughput (HTTP/appmix)
0.9/1.0 Gbps IPsec VPN throughput
200,000 Max sessions
37,000 New sessions per second

PA-440 Firewall

2.9/2.2 Gbps firewall throughput (HTTP/appmix)
0.9/1.0 Gbps IPsec VPN throughput
200,000 Max sessions
37,000 New sessions per second

PA-415 Firewall

1.6/1.2 firewall throughput (HTTP/appmix)
0.6/0.685 Gbps IPsec VPN throughput
64,000 Max sessions
12,000 New sessions per second

PA-410 Firewall

1.6/1.2 firewall throughput (HTTP/appmix)
0.6/0.685 Gbps IPsec VPN throughput
64,000 Max sessions
12,000 New sessions per second

Palo Alto Networks Enterprise Firewall - PA-800 Series

The PA-800 Series next-generation firewalls prevent cyber threats and safely enable applications. The series includes PA-820 and PA-850, which are based on the same architectural foundation as all of our next-generation firewalls.

The PA-800 Series of appliances provide advanced visibility and control of applications, users, and content at throughput speeds of up to 1.9 Gbps and with I/O options of up to four 10 Gigabit SFP+ ports. Redundant power supplies provide hardware resiliency, and the USB port allows rapid deployment of large numbers of firewalls with consistent configuration.

PA-800 Firewall

PA-820 Firewall

940 Mbps firewall throughput (App-ID enabled)
610 Mbps threat prevention throughput
400 Mbps IPSec VPN throughput
128,000 max sessions
8,300 new sessions per second
1000 IPSec VPN tunnels/tunnel interfaces
5 virtual routers
30 security zones
1,500 max number of policies

PA-850 Firewall

1.9 Gbps firewall throughput (App-ID enabled)
780 Mbps threat prevention throughput
400 Mbps IPSec VPN throughput
192,000 max sessions
9,500 new sessions per second
1000 IPSec VPN tunnels/tunnel interfaces
5 virtual routers
40 security zones
1,500 max number of policies

Palo Alto Networks Enterprise Firewall - PA-1400 Series

Palo Alto Networks PA-1400 Series ML-Powered Next-Generation Firewalls, comprising the PA-1420 and PA-1410, are designed to provide secure connectivity for organizations’ branch offices as well as midsize businesses.

The controlling element of the PA-1400 Series is PANOS, the same software that runs all Palo Alto Networks NGFWs. PAN-OS natively classifies all traffic, inclusive of applications, threats, and content, and then ties that traffic to the user regardless of location or device type. The application, content, and user—in other words, the elements that run your business—then serve as the basis of your security policies, resulting in improved security posture and reduced incident response time.

PA-1400 Firewall

PA-1410 Firewall

8.9/6.8 Gbps firewall throughput (HTTP/appmix)
3.3/3.2 Gbps threat prevention throughput (HTTP/appmix)
4.6 Gbps IPSec VPN throughput
945,000 max sessions
100,000 new sessions per second
1/6 virtual s (base/max)

PA-1420 Firewall

9.9/9.5 Gbps firewall throughput (HTTP/appmix)
5.0/4.8 Gbps threat prevention throughput (HTTP/appmix)
6.5 Gbps IPSec VPN throughput
1,400,000 max sessions
140,000 new sessions per second
1/6 virtual s (base/max)

Palo Alto Networks Enterprise Firewall - PA 3400 Series

Palo Alto Networks PA-3400 Series ML-Powered NGFWs—comprising the PA-3440, PA-3430, PA-3420 and PA-3410—target high-speed internet gateway deployments. PA-3400 Series appliances secure all traffic, including encrypted traffic, using dedicated processing and memory for networking, security, threat prevention, and management.

PA-3400 Series

PA-3410 Firewall

11 Gbps firewall throughput (App-ID enabled¹)
5.1 Gbps Threat Prevention throughput²
6.8 Gbps IPsec VPN throughput
1,400,000 sessions
145,000 new sessions per second³
1/11 virtual systems (base/max⁴)

PA-3420 Firewall

16.9 Gbps firewall throughput (App-ID enabled¹)
7.6 Gbps Threat Prevention throughput²
9.9 Gbps IPsec VPN throughput
2,000,000 sessions
205,000 new sessions per second³
1/11 virtual systems (base/max⁴)

PA-3430 Firewall

20.5 Gbps firewall throughput (App-ID enabled¹)
9.2 Gbps Threat Prevention throughput²
12.2 Gbps IPsec VPN throughput
2,500,000 sessions
240,000 new sessions per second³
1/11 virtual systems (base/max⁴)

PA-3440 Firewall

24 Gbps firewall throughput (App-ID enabled¹)
12.8 Gbps Threat Prevention throughput²
14.5 Gbps IPsec VPN throughput
3,000,000 sessions
268,000 new sessions per second³
1/11 virtual systems (base/max⁴)

Palo Alto Networks Enterprise Firewall - PA 5200 Series

The PA-5200 Series next-generation firewalls prevent threats, and safely enable applications, across a diverse set of high-performance use cases (e.g., Internet Gateway, Data Center, and Service Provider environments). The series includes the PA-5260, PA-5250, and PA-5220 which provide predictable performance with deep visibility into and control over all traffic, including encrypted traffic.

The PA-5400 Series enables you to secure your organization through advanced visibility and control of applications, users, and content at throughput speeds of up to 200 Gbps. Dedicated processing resources assigned to networking, security, signature matching, and management functions ensure predictable performance.

PA-5200 Series

PA-5450 Firewall

200 Gbps firewall throughput (HTTP/appmix)
125 Gbps Threat Prevention throughput
95 Gbps IPsec VPN throughput
100M Max sessions
4M New sessions per second

Palo Alto Networks Enterprise Firewall - PA 5400 Series

Palo Alto Networks PA-5400 Series ML-Powered NGFWs—comprising the PA-5430, PA-5420, and PA-5410—are ideal for high-speed data center, internet gateway, and service provider deployments. The PA-5400 Series appliances secure all traffic, including encrypted traffic.

PA-5400 Series

PA-5410 Firewall

45.2/36.7 Gbps firewall throughput (HTTP/appmix)
22/23.5 Gbps threat prevention throughput (HTTP/appmix)
21 Gbps IPSec VPN throughput
4.1 M max sessions
246,000 new sessions per second
10/20 virtual systems (base/max)

PA-5420 Firewall

53.7/47.5 Gbps firewall throughput (HTTP/appmix)
28.8/30.5 Gbps Gbps threat prevention throughput (HTTP/appmix)
28.7 Gbps IPSec VPN throughput
6.2 M max sessions
315,000 new sessions per second
15/65 virtual systems (base/max)

PA-5430 Firewall

63/59.4 Gbps firewall throughput (HTTP/appmix)
37.6/40.9 Gbps threat prevention throughput (HTTP/appmix)
42 Gbps IPSec VPN throughput
8.3M max sessions
366,000 new sessions per second
25/125 virtual systems (base/max)

Palo Alto Networks Enterprise Firewall - PA 7000 Series

Our PA-7000 Series high-performance network security appliances offer the perfect blend of power, intelligence and simplicity.

Power – derived from a proven platform architecture that combines an ultra-efficient, single-pass software engine with nearly 700 function-specific processors for networking, security, content inspection, and management.

Intelligence – that optimizes security processing resource utilization and dynamically scales as new computing power becomes available.

Simplicity – resulting from a unified approach toward management and licensing.

PA-7000 Series

PA-7050 Firewall

120 Gbps firewall throughput (App-ID enabled)
60 Gbps threat prevention throughput
24 Gbps IPSec VPN throughput
24,000,000 max sessions
720,000 new sessions per second
120,000 IPSec VPN tunnels/tunnel interfaces
20,000 SSL VPN Users
225 virtual routers
25/225 virtual systems (base/max)
900 security zones
40,000 max number of policies

PA-7080 Firewall

200 Gbps firewall throughput (App-ID enabled)
100 Gbps threat prevention throughput
80 Gbps IPSec VPN throughput
1,200,000 max sessions
80,000,000 new sessions per second
225 virtual routers
25/225 virtual systems (base/max)
900 security zones

Legacy Products