Are you ready to deploy a Next Generation Firewall?

Lemarchand

Is Palo Alto the only true NGFW? SonicWall? Juniper SRX? Do you think that Gartner's definition of a NGFW is correct? Does anyone know of a matrix that maps out which vendors products truly meet the guidelines and which ones are just bolt on "catch up" attempts to create a NGFW?

 

Is the technology still in its infancy or is it mature enough to be deployed in major enterprises?

Topic: Security
Answer this Question

Answers

2 total
davidstrom
Vote Up (33)

The definition of what is "next gen" varies widely, and can mean "any firewall that does something more intelligent than allow/block particular ports."  McAfee, Juniper, Checkpoint and others all have something that fits this -- for example, can you block Facebook games but still allow people to access their Facebook wall and message traffic without having to write (and test) a lot of custom rules? 

You can take a look at a short video that I did here:

McAfee Firewall Profiler v2 offers new analysis features

jimlynch
Vote Up (25)

Hi Lemarchand,

You might want to give this article from Network World a read:

Next-generation firewalls: In depth
http://www.networkworld.com/news/2011/101711-next-generation-firewalls-i...

It will give you a good overview of what the issues are and what to look for.

Ask a question

Join Now or Sign In to ask a question.
Google, Dropbox and the Open Technology Fund are supporting a new organization focused on making open-source security and privacy tools more user-friendly.
Among six major U.S. cities, CSOs are paid the most in San Francisco and New York, but factoring in the cost of living makes Denver and Chicago the best bang-for-the-buck places.
Apple's iOS 8 addresses a serious weakness that could allow attackers to hijack the wireless network authentication of Apple devices and gain access to enterprise networks.
Legislation introduced in the U.S. Senate on Thursday aims to place limits on access by U.S. law enforcement agencies to emails and other communications stored abroad.
Two online advertising networks, Google's DoubleClick and Zedo, have been delivering malicious advertisements that could install malware on a person's computer, according to the security vendor Malwarebytes.
Google is turning on data encryption by default in the next version of Android, a step that mirrors broad moves in the technology industry to ensure better data security.
CloudFlare said it has engineered a novel way to handle sensitive encryption keys that allows organizations such as financial institutions to still use its caching service to fend off cyberattacks.
Samsung on Thursday announced price reductions and updates for its Knox security and management software for IT shops and a free My Knox service that is directly available to professionals using ActiveSync.
The breach of Home Depot's payment systems may have compromised 56 million payment cards as a result of malware that has since been eliminated, the company said Thursday.
Apple outlined its new privacy policy and set up a site to explain what information it collects from users and how it handles it, as the company enters new areas like health tracking and mobile payments that have potential privacy implications.