I have some questions to the wildfire appliance:
We don't use the public wildfire because we are not allowed to send secret files into the cloud because of strict data security policies.
So I thought to use the on-premise appliance.
But the article says "By default, the WF-500 appliance does not send any files to the Palo Alto Networks WildFire cloud. However, malware must be sent to the WildFire public cloud in order to receive antivirus signatures for the malware discovered by the appliance."
For me, that sentence is contradictory.
Can someone explain me what's exactly going on in the background?
You may want to refer to the WildFire documentation based on PAN-OS 7.1 instead, as it is a little bit more clear.
The sending to to the public cloud, can be optionally disabled.
I hope this helps.
I would really reach out to your SE for valid appliance costs as nobody knows what your discount is going to be and it sounds like you would fall under government pricing. List on a WF-500 2TB RAID storage was reported at one point in time as $125,000 for the appliance; I'm sure that this pricing however if accurate at the time was list and you could expect a decent discount percentage off of that.
Wildfire is extremely useful, I would take a look at some of the actual wildfire documentation and ask for a demonstration if you haven't used it before. If you have a lab enviroment where you could actually enable it there is limited capability without paying for it so that you could actually see how it handles the traffic and analyze part of it.
One of the drivers that makes companies (especially government organizations and financial institutions) to purchase an on-premise sandbox like the WF-500, is for privacy reasons. There are other drivers, but this the main one.
Most of these organizations do not want to send their MS-Office files, PDFs to the public cloud for emulation; hence, they prefer to spend the money on purchasing a dedicated appliance to sit on their premise so that they know that that data is staying onsite.
There is also the issue of data sovereignty, since each country has different privacy laws such as the privacy laws in the US are different from the ones in Canada. In fact in Canada (especially in the West) it is extremely strict, and companies have to ensure that data does not leave Canada borders. Although Palo Alto has one a very good job in expanding its WildFire cloud coverage and capability, by implementing a dedicated datacenters in the EU, JP, and SG and the Global one which is located in the US, other countries like Canada have more strict laws that do not allow their data to reach countries in those regions.
As for pricing @BPry is correct. The appliance price is in the $125K USD as per the 2017 price list and it does not include support. The price is differentiated for governement agencies. But I encourage you to contact your local SE for further details or your reseller for quotes.
Anyway, I hope this clarifies .
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!