If a Palo Alto Networks Next-Generation Firewall (NGFW) already has Advanced Threat Prevention (ATP) enabled what is the throughput impact of also enabling Wildfire and Advanced URL Filtering (AURLF)?
If a Palo Alto Networks Next-Generation Firewall (NGFW) already has Advanced Threat Prevention (ATP) enabled what is the throughput impact of also enabling Wildfire and Advanced URL Filtering (AURLF)?
Enabling additional security features such as Wildfire and Advanced URL Filtering on a Palo Alto Networks Next-Generation Firewall will result in a decrease in throughput. Each additional security service processes traffic, which adds to the overall load on the system, reducing the throughput capacity. This is a common characteristic of network security devices, where additional security functionalities trade off some performance for enhanced features.
Traditional Integration vs. Single- Pass Architecture Numerous integration approaches have come about, including unified threat management (UTM), deep packet inspection, and others. These approaches share a common problem, however: they lack consistent and predictable performance when security services are enabled. Specifically, the base firewall functions can perform at high throughput and low latency, but when added security functions are enabled, performance decreases while latency increases. More importantly, these traditional approaches to integration limit security capabilities because a “sequence of functions” approach is inherently less flexible than one in which all functions share information and enforcement mechanisms. Palo Alto Networks Single-Pass Architecture addresses these performance and flexibility challenges with a unique single-pass approach to packet processing, delivering better performance and security. https://www.paloaltonetworks.com/resources/whitepapers/single-pass-parallel-processing-architecture
see definition of Single Pass Architecture. C is correct
it's C for sure.
Is one of PANW distinguishing feature against competitors
C is correct