Palo Alto Networks Advanced Threat Prevention vs Trellix Intrusion Prevention System comparison

Palo Alto Networks and Trellix are both solutions in the Intrusion Detection and Prevention Software (IDPS) category. Palo Alto Networks is ranked #10 with an average rating of 6.3, while Trellix is ranked #15 with an average rating of 8.0. Palo Alto Networks holds a 5.6% mindshare in ID, compared to Trellix’s 2.7% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 94% of Trellix users who would recommend it.

Palo Alto Networks Advanced...

Read 29 Palo Alto Networks Advanced Threat Prevention reviews

3,021 Views
2,356 Comparison Views

95% willing to recommend

Trellix Intrusion Preventio...

Read 16 Trellix Intrusion Prevention System reviews

1,144 Views
1,018 Comparison Views

94% willing to recommend

Palo Alto Networks Advanced...

Trellix Intrusion Preventio...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 19, 2024

Palo Alto Networks Advanced Threat Prevention and Trellix Intrusion Prevention System compete in the cybersecurity market. Palo Alto appears to have the upper hand due to its advanced features, ease of management, and robust cloud options, despite Trellix's competitive pricing appealing to budget-conscious buyers.

Features: Palo Alto Networks offers a next-generation firewall with machine learning for threat detection, WildFire for advanced sandboxing, and strong URL filtering. Trellix focuses on real-time threat intelligence, efficient DDoS attack management, and stable performance supported by automated signature updates.

Room for Improvement: Palo Alto Networks could improve its initial setup complexity, resource consumption, and expand protocol integrations. Users also suggest enhancements in email protection and pricing. Trellix's management interface needs simplification, along with better detection capabilities and improved documentation.

Ease of Deployment and Customer Service: Both products offer primarily on-premises deployments, with Palo Alto providing more cloud deployment options. Palo Alto generally has better-rated customer support, though some users express concerns about local support quality. Trellix is praised for good support but criticized for complex console navigation and limited support resources in certain regions.

Pricing and ROI: Palo Alto is perceived as expensive, particularly in smaller markets, but its advanced features justify the cost for many and offer strong ROI due to comprehensive security functionalities. Trellix, offering competitive pricing and no licensing fees, appeals to budget-conscious buyers and provides value through its effectiveness and cost structure.

To learn more, read our detailed Palo Alto Networks Advanced Threat Prevention vs. Trellix Intrusion Prevention System Report (Updated: December 2025).

Buyer's Guide

Palo Alto Networks Advanced Threat Prevention vs. Trellix Intrusion Prevention System

December 2025

Download the complete report

Helped 881,114 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Palo Alto Networks Advanced...

Ranking in Intrusion Detection and Prevention Software (IDPS)

10th

Average Rating

8.4

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Trellix Intrusion Preventio...

Ranking in Intrusion Detection and Prevention Software (IDPS)

15th

Average Rating

8.4

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of January 2026, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Palo Alto Networks Advanced Threat Prevention is 5.6%, up from 4.9% compared to the previous year. The mindshare of Trellix Intrusion Prevention System is 2.7%, up from 2.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Intrusion Detection and Prevention Software (IDPS) Market Share Distribution
Product	Market Share (%)
Palo Alto Networks Advanced Threat Prevention	5.6%
Trellix Intrusion Prevention System	2.7%
Other	91.7%

Intrusion Detection and Prevention Software (IDPS)

Featured Reviews

Partha Dash

Global Network Tech Lead at a tech vendor with 10,001+ employees

Advanced protection enables us to confidently secure against evolving threats

Palo Alto Networks can improve Advanced Threat Prevention by catering to the growing adoption of AI and agentic tooling. The Threat Protection modules should have the necessary intelligence to protect against those types of threats, as AI will be there to do a human job; this is an evolving area. From an Advanced Threat Protection perspective, the technology associated with Palo Alto Networks, such as their sandboxing environment, is quite good. However, Palo Alto needs to focus on how to bring that technology to end users and how easy it is to use, especially in a hybrid environment where users work from various locations. While Palo Alto excels in certain setups, they need to improve the user experience in distributed working conditions.

Read full review

Bhupesh-Sharma

Large account Manager at Softcell Technologies Limited

Has offered reliable threat protection and detailed network insights but could expand features beyond existing capabilities

The best features of Trellix Intrusion Prevention System include advanced ATP (Advanced Threat Protection), which uses signatures, behavior analysis, and machine learning to stop zero-day exploits and malware advanced persistent threats (APTs). They track and collect data from APTs, which allows them to track malicious files entering the environment. The system offers inline prevention and real-time automatic blocking of malicious packets before they reach the network. It integrates with the Trellix ecosystem and provides application visibility and control. The solution provides deep insight into network traffic, applications, and protocols for better information. All packets coming through the application are analyzed and reported. They share intelligence updates regularly to protect from different malicious files and sector-specific threats. It supports both on-premise and cloud environments.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"One of the most valuable features is the anti-malware protection."

"The most valuable features are the simplicity, transparency, and overall ease of management."

"The most valuable feature of Palo Alto Threat Prevention for our company is the next generation firewall."

"It's a monster, it's got so many beautiful features. We do deal with other firewalls and we've got a better idea of what other firewalls' capabilities are, any comparison with the Palo Alto I liked the quality of service on the applications that you can control the amount of bandwidth an application is allowed to consume. The best feature is the quality of the application quality of service."

"With the IP address flag, I was able to see that I was being hacked. The moment there was an interaction between somebody on my network and that IP, the solution was able to flag it, and we were able to protect ourselves."

"You can scale the product."

"It is a stable product."

"Most of the features of Palo Alto Threat Prevention are alright. I recommend features like content filtering, IP address, & intelligent firewalls. The reporting feature is very good."

More Palo Alto Networks Advanced Threat Prevention pros

"McAfee NSP is much more stable than Cisco."

"The most valuable features in Trellix for me are the automated signature updates. It is a great and convenient feature."

"The best feature of the Trellix Intrusion Prevention System is the rules that Trellix provides, I think that's the best value from IPS."

"Great monitoring feature."

"The best features of Trellix Intrusion Prevention System include advanced ATP (Advanced Threat Protection), which uses signatures, behavior analysis, and machine learning to stop zero-day exploits and malware advanced persistent threats (APTs)."

"The most valuable features of the solution stem from the fact that it is a good product for dealing with DDoS attacks and for the inspection of network traffic."

"The ability to centrally manage all the IPS sensors, track the different security events generated by it, and customize the different policies, depending on their location."

"The most valuable features are the customization of the signature and the unlimited amount of signatures in IPS."

More Trellix Intrusion Prevention System pros

Cons

"The price of licenses should be lowered to make it less costly to scale our solution."

"Right now we are focusing on email. If Palo Alto can increase the features related to email filtering and the new malware, it would help us protect our systems."

"Sometimes when you want to group a set of ports, and communicate with Palo Alto, you cannot group TCP and UDP ports together. This needs to be adjusted."

"The documentation needs to be improved. I need better information about how to configure it and what the best practices are."

"The cost involves the price of the hardware, which is expensive. However, most of the Palo Alto solutions are expensive."

"We are attempting to improve the use of URL filtering beyond threat protection."

"Palo Alto's maintenance needs to be improved."

"Generally, to deploy it will take some downtime, about a day."

More Palo Alto Networks Advanced Threat Prevention cons

"The solution could improve some aspects of detection."

"The Network Security Managers could be more stable, agile, and work faster. When it comes to instability, there is room for improvement."

"Trellix Intrusion Prevention System does not provide virtual patching."

"Some of the documentation is not as straightforward as it could be."

"The pricing could be improved."

"The area of concern where the tool needs improvement is how the product prompts users at a network level that helps prevent any wireless network attacks through alerts and notifications."

"There are limited resources for configuration guidance."

"Integration with Global Thereat Intelligence could be better. Also, I think management solutions are end of life now at McAfee. Network threat analyzer may be used for endpoint quarantines. Integration between these sides, as well as endpoint APO, will help you quarantine the risky endpoints."

More Trellix Intrusion Prevention System cons

Pricing and Cost Advice

"The product’s pricing is expensive for small companies."

"The pricing and the licensing are pretty competitive at this stage. As a reseller, I would like to see the price come down a little bit so I can compete better against other firewalls because we do that all the time."

"There is an initial, expensive investment but the return is good."

"Palo Alto Networks Threat Prevention could improve by having consistent pricing at system levels."

"From one to ten, with one being the most expensive, I would rate the pricing of Palo Alto Networks Threat Prevention a one out of ten. It is my understanding that Palo Alto Networks Threat Prevention is the most expensive one."

"It is an expensive solution and I would like to see a drop in price."

"The price of the solution is higher than others on the market. A price reduction would be beneficial if it does not impact their database quality."

"The cost involves the price of the hardware, which is expensive. However, most of the Palo Alto solutions are expensive."

More Palo Alto Networks Advanced Threat Prevention pricing and cost advice

"I rate the product’s pricing an eight out of ten."

"The tool is competitively priced."

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

881,114 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

10%

Financial Services Firm

Manufacturing Company

Performing Arts

Manufacturing Company

13%

Computer Software Company

10%

Financial Services Firm

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	4
Large Enterprise	14

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	6
Large Enterprise	6

Questions from the Community

Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?

Arbor would be the best bid, apart from Arbor, Palo Alto and Fortinet have good solutions. As this is an ISP, I would prefer Arbor.

See all answers

What is your experience regarding pricing and costs for Palo Alto Networks Threat Prevention?

Palo Alto Networks Advanced Threat Prevention requires an add-on license and is considered expensive compared to competitors like Cisco AMP and FortiGate ( /products/fortinet-fortigate-reviews ) fi...

See all answers

What needs improvement with Palo Alto Networks Threat Prevention?

See all answers

What do you like most about McAfee Network Security Platform?

The threat intelligence updates are very accurate.

See all answers

What is your experience regarding pricing and costs for McAfee Network Security Platform?

The tool is competitively priced. I rate the pricing a six out of ten.

See all answers

What needs improvement with McAfee Network Security Platform?

Trellix Intrusion Prevention System does not provide virtual patching. Patching involves updates on the OS side to address vulnerabilities, which is a different functionality. Trellix Intrusion Pre...

See all answers

Comparisons

Darktrace vs Palo Alto Networks Advanced Threat Prevention

Compared 11% of the time

Fortinet FortiGate vs Palo Alto Networks Advanced Threat Prevention

Compared 9% of the time

Forcepoint Next Generation Firewall vs Palo Alto Networks Advanced Threat Prevention

Compared 8% of the time

Check Point IPS vs Palo Alto Networks Advanced Threat Prevention

Compared 7% of the time

Huawei Network Intelligent Protection vs Palo Alto Networks Advanced Threat Prevention

Compared 5% of the time

More Palo Alto Networks Advanced Threat Prevention Competitors

Trend Micro TippingPoint Threat Protection System vs Trellix Intrusion Prevention System

Compared 17% of the time

Fortinet FortiGate vs Trellix Intrusion Prevention System

Compared 11% of the time

Cisco Secure IPS (NGIPS) vs Trellix Intrusion Prevention System

Compared 11% of the time

Vectra AI vs Trellix Intrusion Prevention System

Compared 7% of the time

IBM Security Network IPS vs Trellix Intrusion Prevention System

Compared 7% of the time

More Trellix Intrusion Prevention System Competitors

Product Reports

Buyer's Guide

Palo Alto Networks Advanced Threat Prevention

January 2026

Palo Alto Networks Advanced Threat Prevention report

Download Palo Alto Networks Advanced Threat Prevention product report

Buyer's Guide

Trellix Intrusion Prevention System

January 2026

Trellix Intrusion Prevention System report

Download Trellix Intrusion Prevention System product report

Also Known As

No data available

McAfee Network Security Platform, McAfee NSP, IntruShield Network Intrusion Prevention System, IntruShield Network IPS

Overview

Palo Alto Networks Advanced Threat Prevention is a cloud-based security service that combines cutting-edge technologies, including machine learning, artificial intelligence, and expert human monitoring, to effectively thwart advanced threats like malware, zero-day attacks, and command-and-control threats. It offers inline protection, scrutinizing all network traffic irrespective of port, protocol, or encryption. An integral component of Palo Alto Networks' security platform, it enjoys widespread adoption across diverse organizations. With its robust security capabilities, it's an ideal choice for entities of all sizes, particularly those in high-risk sectors such as finance, healthcare, and government agencies, seeking to safeguard their networks from a broad spectrum of advanced threats.

Palo Alto Networks

Block More Intrusions
Stop new and unknown attacks with signature-based and signature-less intrusion prevention systems. Signature-less intrusion detection finds malicious network traffic and stops attacks where no signatures exist.

Unify Virtual and Physical Security
Support network virtualization across private and public cloud platforms to scale security and evolve with changing IT dynamics.

Maximize Security and Performance
Scale hardware performance to speeds up to 100 Gbps and leverage data from multiple products.

Trellix

Sample Customers

University of Arkansas, JBG SMITH, SkiStar AB, TRI-AD, Temple University, Telkom Indonesia

Desjardins Group, HollyFrontier, Nubia, Agbar, WNS Global Services, INAIL, Universidad de Las Américas Puebla (UDLAP), Cook County, China Pacific Insurance, Bank Central Asia, California Department of Corrections and Rehabilitation, City of Chicago, Macquarie Telecom, Sutherland Global Services, Texas Tech University Health Sciences Center, United Automotive Electronic Systems

Buyer's Guide

Palo Alto Networks Advanced Threat Prevention vs. Trellix Intrusion Prevention System

December 2025

Free Report: Palo Alto Networks Advanced Threat Prevention vs. Trellix Intrusion Prevention System

Find out what your peers are saying about Palo Alto Networks Advanced Threat Prevention vs. Trellix Intrusion Prevention System and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,114 professionals have used our research since 2012.

See our Palo Alto Networks Advanced Threat Prevention vs. Trellix Intrusion Prevention System report.

See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.