ON-SITE SPARE PALO ALTO NET PA-1420

PA-1400 Series

Palo Alto Networks PA-1400 Series ML-Powered Next-Generation Firewalls, comprising the PA-1420 and PA-1410, are designed to provide secure connectivity for organizations' branch offices as well as midsize businesses.

The controlling element of the PA-1400 Series is PAN-OS®, the same software that runs all Palo Alto Networks NGFWs. PAN-OS natively classifies all traffic, inclusive of applications, threats, and content, and then ties that traffic to the user regardless of location or device type. The application, content, and user-in other words, the elements that run your business-then serve as the basis of your security policies, resulting in improved security posture and reduced incident response times.

Key Security and Connectivity Features | ML-Powered Next-Generation Firewall

• Embeds machine learning (ML) in the core of the firewall to provide inline signatureless attack prevention for file-based attacks while identifying and immediately stopping never-before-seen phishing attempts.
• Leverages cloud-based ML processes to push zero-delay signatures and instructions back to the NGFW.
• Uses behavioral analysis to detect IoT devices and make policy recommendations; cloud-delivered and natively integrated service on the NGFW.
• Automates policy recommendations that save time and reduce the chance of human error

Identifies and Categorizes All Applications, on All Ports, All the Time, with Full Layer 7 Inspection

• Identifies the applications traversing your network irrespective of port, protocol, evasive techniques, or encryption (TLS/SSL). In addition, it automatically discovers and controls new applications to keep pace with the SaaS explosion with SaaS Security subscription.
• Uses the application, not the port, as the basis for all your safe enablement policy decisions: allow, deny, schedule, inspect, and apply traffic-shaping.
• Offers the ability to create custom App-ID™ tags for proprietary applications or request App-ID development for new applications from Palo Alto Networks.
• Identifies all payload data within the application (e.g., files and data patterns) to block malicious files and thwart data exfiltration attempts.
• Creates standard and customized application usage reports, including software-as-a-service (SaaS) reports that provide insight into all sanctioned and unsanctioned SaaS traffic on your network.
• Enables safe migration of legacy Layer 4 rule sets to App-ID-based rules with built-in Policy Optimizer, giving you a rule set that is more secure and easier to manage.

Enforces Security for Users at Any Location, on Any Device, While Adapting Policy Based on User Activity

• Enables visibility, security policies, reporting, and forensics based on users and groups-not just IP addresses.
• Easily integrates with a wide range of repositories to leverage user information: wireless LAN controllers, VPNs, directory servers, SIEMs, proxies, and more.
• Allows you to define Dynamic User Groups (DUGs) on the firewall to take time-bound security actions without waiting for changes to be applied to user directories.
• Applies consistent policies irrespective of users' locations (office, home, travel, etc.) and devices (iOS and Android mobile devices; macOS, Windows, and Linux desktops and laptops; Citrix and Microsoft VDI; and terminal servers).
• Prevents corporate credentials from leaking to third-party websites and prevents reuse of stolen credentials by enabling multifactor authentication (MFA) at the network layer for any application without any application changes.

• Zero Day Event
• Advanced Threat Protection
• URL Filtering
• DNS Security
• Data Loss Prevention
• IoT Security
• SaaS Security
• TLS Decryption
• Antivirus
• Anti-spyware
• Secure IPsec VPN Connectivity
• Malware Protection

• MD5
• SHA-1
• SHA-256
• SHA-384
• SHA-512
• AES (128-bit)
• AES (192-bit)
• AES (256-bit)
• 3DES
• SSL
• TLS
• TLS 1.3

• 1000Base-T
• 5GBase-T
• 1000Base-X
• 10GBase-X

• SFP+
• SFP (mini-GBIC)

• 50 Hz
• 60 Hz

• Network
• Business
• Security
• Branch Office
• Enterprise

• cTUVus
• CB
• FCC Class A
• CE Class A
• VCCI Class A