Evaluating next-generation firewalls

As the threat grows and develops, the security of the 21st century becomes more complex and the importance of having a firewall that can manage these new complex security measures is never more. In this webcast, Joel Snyder, an information security expert, describes six tips and tips for evaluating the next-generation firewall. Snyder describes how people can carefully investigate architectures and products and migrate from the original firewall to the next generation of firewalls that can handle additions and new tasks.

These tips include avoiding new product marketing terms and buzzwords, focusing on immediate problem solving, ensuring that next-generation firewalls to consider include all the firewall's basic components included. We extend the tuple to increase the visibility of the application, confirm that the next generation that we are evaluating uses SSL decryption, build and test the application identification method regardless of how difficult it is I will. In the evaluation process, with all these hints and tips in mind, after deciding to use the next-generation firewall, deployment and management will be smoother and succeed.

Brian Monkman, security project manager for ICSA Labs, says: "In general, next-generation firewalls can run online, recognize applications, have all the basic firewall capabilities, and network IPS functions should be tightly integrated, but the opinions vary widely." "You "The mileage may change," said Monkman, saying that the saying goes into this. "We confirmed that the performance characteristics of some next-generation firewalls are declining to 50% of functionality by changing the combination of traffic processed by the product and by providing application checking function. A combination of security profiles to meet your needs. "

Purchasing the next generation firewall is a big decision, so do not jump in first. Before deciding to purchase it is important to understand the criteria for evaluating various factors, such as integration, support options, features, product advantages, and trade-offs. Please read to learn more about these standards and other "sealed transactions"

This slide will explain the seven factors to consider when evaluating and ultimately selecting the next generation firewall platform. Safety research company NSS Labs evaluated 13 top NGFWs and concluded that 7 of them met the criteria for obtaining "recommended status". However, narrowing the field to seven suppliers is not enough. To find the firewall that best meets your needs and budget, you need to apply your own standards. For most of us, NGFW may replace the aging NGFW in traditional firewalls and aging network environments. In this case, the final decision may be affected by replacement hardware, other network components that need to be used in the new firewall, and those who implement and manage NGFW.

Firewalls are essential to businesses as enterprises need reliable ways to protect information. Companies have two kinds of firewalls, a traditional firewall and a next generation firewall. Around 20 years ago, traditional firewalls were the solution for companies to deal with potential threats. They are popular because they are simple in function and they usually have cost advantages. Traditional firewalls can control network traffic, but can only be controlled from the standpoint of "walking" or "stop". They use the source's destination IP address and TCP / UDP port information to decide whether to allow packets to pass through the network or block access to the network.