Palo Alto Networks Next-Generation Firewalls

Palo Alto Networks firewalls provide network security by enabling enterprises to see and control applications, users, and content – not just ports, IP addresses, and packets – using three unique identification technologies: App-ID, User-ID, and Content-ID.

These identification technologies, found in Palo Alto Networks firewalls, enable enterprises to create business-relevant security policies – safely enabling organisations to adopt new applications, instead of the traditional “all-or-nothing” approach offered by traditional port-blocking firewalls used in many security infrastructures.

Key Next-Generation Firewall Requirements:

• Identify applications, not ports: Identify exactly what the application is, across all ports, irrespective of protocol, SSL encryption, or evasive tactic. The application identity becomes the basis for all security policies.
• Identify users, not just IP addresses: Leverage information stored in enterprise directories for visibility, policy creation, reporting, and forensic investigation.
• Inspect content in real-time: Protect the network against attacks and malware embedded in application traffic at low-latency, high throughput speeds.
• Simplify policy management: Restore visibility and control with easy-to-use graphical tools and a policy editor that ties applications, users, and content together in a unified manner.
• Deliver multi-gigabit throughput: Combine high performance hardware and software in a purpose-built platform to enable low latency, multi-gigabit performance with all services enabled