Next-generation Firewalls

What is a next-generation firewall?

“A next-generation firewall provides capabilities beyond that of a stateful network firewall” Next-generation firewalls have a “deep-packet inspection firewall that moves beyond port/protocol inspection and blocking to add application-level inspection, intrusion prevention, and bringing intelligence from outside the firewall.”

A next-generation firewall must include:

  • Standard firewall capabilities like stateful inspection
  • Integrated intrusion prevention
  • Application awareness and control to see and block risky apps
  • Threat intelligence sources
  • Upgrade paths to include future information feeds
  • Techniques to address evolving security threats

other functionalities that make a firewall next generation.

  • Application firewall
  • Intrusion prevention system (IPS)
  • Website filtering
  • Bandwidth management
  • Antivirus inspection
  • Identity management integration

example of a next-generation firewall product would be Palo Alto Networks

Sources:

https://www.checkpoint.com/cyber-hub/network-security/what-is-next-generation-firewall-ngfw/

https://www.wwt.com/article/what-is-a-next-generation-firewall-ngfw

https://digitalguardian.com/blog/what-next-generation-firewall-learn-about-differences-between-ngfw-and-traditional-firewalls

https://www.cisco.com/c/en/us/products/security/firewalls/what-is-a-next-generation-firewall.html#~choose-an-ngfw-firewall

Leave a Reply