Next-Generation Firewall (NGFW)
Next-generation firewall refers to advances in firewall technology, from app awareness, user-based filtering, and intrusion prevention to cloud inspection.
- original next-gen firewall was released in 2010 by Palo Alto
- no official specification for what an NGFW can do
- Typical features:
- Layer 7 application-aware filtering
- including inspection of TLS encrypted traffic
- Integration with network directories
- facilitating per-user or per-role content and time-based filtering policies
- providing better protection against an insider threat
- facilitating per-user or per-role content and time-based filtering policies
- IPS functionality
- can combine traditional firewall functionalities with advanced capabilities
- Integration with cloud networking
- Layer 7 application-aware filtering