Hacker News new | ask | show | jobs
by OrvalWintermute 1756 days ago
I thought about which OS for some of the same things and I realized that I would rather go with a lab version of a full enterprise firewall.

A Palo Alto VM gets you pretty much most of the sweet PA features without the cost, and a better approach than an outdated strategy like VLAN as Access Control, or zone firewalling, permitting the use of permit/deny by protocol, and overall better privilege tiering by network area.
2 comments
todd8 1756 days ago
I’m curious about PA firewalls. The product descriptions claim “Machine Learning” based routing/firewalls. What does that even mean? I’m a bit skeptical about AI being used in a firewall. Can someone help me understand why I should consider this instead of running pfsense on a Netgate appliance?
link
EvanAnderson 1756 days ago
> A Palo Alto VM ... without the cost ...

Does Palo Alto have some kind of no-cost offering in their VM line?

link
OrvalWintermute 1756 days ago
> A Palo Alto VM ... without the cost ...

This isn't free, but $50-200 is alot less than $2-4k

link
EvanAnderson 1756 days ago
Yikes! I didn't realize PA had anything available for less than a 4 digit price point. I'll check it out. Thanks!
link