This document provides an overview of Palo Alto Networks next-generation firewall products. It discusses how traditional stateful inspection firewalls are insufficient for identifying applications and users in today's environment. Palo Alto Networks firewalls use application identification, user identification, and content inspection technologies to restore visibility and control at the application level. These purpose-built appliances can identify applications regardless of port or protocol, identify users, and scan application content in real-time while providing granular security policies and multi-gigabit performance. The document outlines the architecture and features of Palo Alto Networks firewall models ranging from 250Mbps to 10Gbps throughput.