Palo Alto Networks Next-Generation Firewalls

Palo Alto Networks firewalls provide network security by enabling enterprises to see and control applications, users, and content – not just ports, IP addresses, and packets – using three unique identification technologies: App-ID, User-ID, and Content-ID.

These identification technologies, found in Palo Alto Networks firewalls, enable enterprises to create business-relevant security policies – safely enabling organisations to adopt new applications, instead of the traditional “all-or-nothing” approach offered by traditional port-blocking firewalls used in many security infrastructures.


Key Next-Generation Firewall Requirements:

  • Identify applications, not ports: Identify exactly what the application is, across all ports, irrespective of protocol, SSL encryption, or evasive tactic. The application identity becomes the basis for all security policies.
  • Identify users, not just IP addresses: Leverage information stored in enterprise directories for visibility, policy creation, reporting, and forensic investigation.
  • Inspect content in real-time: Protect the network against attacks and malware embedded in application traffic at low-latency, high throughput speeds.
  • Simplify policy management: Restore visibility and control with easy-to-use graphical tools and a policy editor that ties applications, users, and content together in a unified manner.
  • Deliver multi-gigabit throughput: Combine high performance hardware and software in a purpose-built platform to enable low latency, multi-gigabit performance with all services enabled


Palo Alto Networks Gold Partner

Krome are a Palo Alto Networks Gold Accredited Partner and can offer you expert advice on planning, implementing and supporting your Palo Alto Networks Next Generation security solution.