Next-generation Firewalls

What is a next-generation firewall?

“A next-generation firewall provides capabilities beyond that of a stateful network firewall” Next-generation firewalls have a “deep-packet inspection firewall that moves beyond port/protocol inspection and blocking to add application-level inspection, intrusion prevention, and bringing intelligence from outside the firewall.”

A next-generation firewall must include:

  • Standard firewall capabilities like stateful inspection
  • Integrated intrusion prevention
  • Application awareness and control to see and block risky apps
  • Threat intelligence sources
  • Upgrade paths to include future information feeds
  • Techniques to address evolving security threats

other functionalities that make a firewall next generation.

  • Application firewall
  • Intrusion prevention system (IPS)
  • Website filtering
  • Bandwidth management
  • Antivirus inspection
  • Identity management integration

example of a next-generation firewall product would be Palo Alto Networks


Leave a Reply