Apr 13, 2011

Are you ready to deploy a Next Generation Firewall?

Is Palo Alto the only true NGFW? SonicWall? Juniper SRX? Do you think that Gartner's definition of a NGFW is correct? Does anyone know of a matrix that maps out which vendors products truly meet the guidelines and which ones are just bolt on "catch up" attempts to create a NGFW?


Is the technology still in its infancy or is it mature enough to be deployed in major enterprises?

Hi Lemarchand,

You might want to give this article from Network World a read:

Next-generation firewalls: In depth

It will give you a good overview of what the issues are and what to look for.

The definition of what is "next gen" varies widely, and can mean "any firewall that does something more intelligent than allow/block particular ports."  McAfee, Juniper, Checkpoint and others all have something that fits this -- for example, can you block Facebook games but still allow people to access their Facebook wall and message traffic without having to write (and test) a lot of custom rules? 

You can take a look at a short video that I did here:

McAfee Firewall Profiler v2 offers new analysis features

Answer this