The last few years have brought us arguably the most significant change in firewall technology in decades. Ever since “stateful inspection” was introduced by Check Point in the late 1990s, firewall administrators and information security officers have been defining security policies based primarily on a connection’s source IP address, destination IP address and service. Now, with the so-called next-generation firewalls promoted by Palo Alto Networks and Check Point R75, policy can also be defined based on the application.
Next-Gen Firewalls Make Old Arguments New Again
Posted by: Avishai Wool September 28, 2011 05:00 AMThe last few years have brought us arguably the most significant change in firewall technology in decades. Ever since “stateful inspection” was introduced by Check Point in the late 1990s, firewall administrators and information security officers have been defining security policies based primarily on a connection’s source IP address, destination IP address and service. Now, with the so-called next-generation firewalls promoted by Palo Alto Networks and Check Point R75, policy can also be defined based on the application.