The Next Generation Firewall (NGFW) concept, defined by Gartner and NSS, offers an effective solution to meet security needs in today’s rapidly changing digital landscape. NGFW has ushered in a new era of network security by identifying users based on verifiable credentials, not just IP addresses.
This comprehensive security solution offers more than just access control, with functionality ranging from malware prevention to application controls.
The Next Generation Firewall (NGFW) concept put forward by Gartner and NSS basically points to 3 main functions.
Next Generation Firewall Function 1
Is it possible to recognize each user by their IP address?
The same person can access organizational resources from a variety of devices. Users are now able to join the network not only from their personal desktops, but also from different devices such as laptops, tablet computers and mobile phones. In fact, users can access the organization’s resources from different locations, for example, from their own desks while taking their laptops to meeting rooms, to different campuses of the organization, or to work from home/café environments.
Each of these examples reflects a principle that next-generation firewalls embrace: Users should be identified based on verifiable credentials, not just IP addresses. That is, firewalls provide more reliable security by identifying from which device and from which location a user is accessing with real and verifiable credentials, not just a physical address.
Next Generation Firewall Function 2
Is it enough just to control access?
Access control lists (ACLs) on the firewall are used to determine access authorizations from trusted sources to relevant destinations. However, it is not possible to prevent a user with these authorizations from executing attacks by running malware. Firewall devices in the middle of your network, bridging multiple layers, need to be more capable. These devices should work more comprehensively, including including an intrusion prevention system (IPS) function.
One of the most important features of next-generation security devices is their ability to perform integrated IPS. IPS and access control features integrated on the firewall are combined to effectively monitor potentially dangerous traffic during authorized accesses. In this way, the security of the network is ensured more effectively and even authorized users are prevented from being associated with malicious activities.
Next Generation Firewall Function 3
Is it enough to control only ports in access control?
Traditional firewalls usually have the ability to define access at the port level. Today, however, many applications can share the same port. This can cause the permissions defined on one port to allow thousands of different applications. As an example, let’s take the rule “allow http(80)/https(443) ports outward” given to internet users. This rule allows users to view web pages on the internet. However, it also allows applications such as Microsoft Teams, WhatsApp, Zoom, BitTorrent, VPN applications, remote connectivity tools and cloud storage services.
Nowadays, with the evolution of user needs, not only port control but also application control is of great importance. This requires going beyond port-based permissions and providing control and restrictions for specific applications. In this way, network administrators can both improve security and protect users’ functionality.
Existence in the digital world now makes security a priority. “Next Generation Firewall” solutions are designed to provide the most effective defense against cyber threats. Palo Alto Networks stands out with its leadership and innovation in this field.
If you want to strengthen your organization’s digital presence and provide comprehensive protection against cyber threats, visit our page now to discover the solutions offered by Palo Alto Networks.
Remember, security comes first. Take a step forward with Palo Alto and build the security of the future today!
