PaloAlto Next Generation Firewall

Next Generation Firewall

Palo Alto Networks are a family of next-generation firewalls which allow for more efficient risk management on enterprise networks by utilizing business-relevant elements such as applications, users, and content as the basis for policy control. Palo Alto Networks, with its next generation firewalls addresses key problems that plague traditional stateful Inspection-based firewall with a reliance on port/protocol to identify the applications and the belief that IP address correlates to a users identity.

Palo Alto Networks utilizes App-ID to exactly analyze the application, and maps the application to the user identity while inspecting the traffic for content policy violations. By focusing on business-relevant elements such as applications, users and content for policy controls, the security team can achieve the following business benefits:

• Manage risk through policy-based application usage control and threat prevention
• Enable growth by embracing new, web-based applications in a controlled and secure manner
• Facilitate operational efficiency by controlling application usage based on users and groups, not IP addresses

With a affluent networking foundation and a common policy management editor, the Palo Alto Networks firewalls can be installed to complement, or replace, an existing firewall implementation.

Key features and benefits:

• Application visibility and control: Accurate identification of the applications traversing the network enables policy-based control over application usage
• SSL inspection: Identifies and decrypts applications that use SSL, enabling policy-based control over the ever increasing amounts of SSL traffic
• Visualization tools: Graphical visibility tools, customizable reporting and logging enables administrators to make a more informed decision on how to treat the applications traversing the network
• Policy-based application control: The policy-editor takes full advantage of existing firewall knowledge to streamline creation and deployment of application usage control policies
• Legacy firewall support: Support for traditional inbound and outbound port-based firewall rules mixed with application-based rules smoothes the transition to a Palo Alto Networks next generation firewall
• Application browser: Helps administrators quickly research what the application is, its’ behavioral characteristics and underlying technology resulting in a more informed decision making process on how to treat the application
• User-based visibility and control: Seamless integration with Microsoft Active Directory (AD) facilitates application visibility and policy creation based on user and group information in AD, not just IP address
• Real-time threat prevention: Detects and blocks viruses, spyware, worms and application vulnerabilities in real-time, dramatically improving performance and accuracy
• High performance: Purpose-built platform with function-specific processing for networking, security, threat prevention and management delivers the performance required to protect today’s high speed networks and eliminate security bottlenecks commonly associated with computationally intensive security applications
• Networking architecture: Support for dynamic routing, site-to-site IPSec VPN, virtual wire mode and layer 2/layer 3 modes facilitates deployment in nearly any networking environment

Datasheets:

• Next Generation Firewall

For a technical consultant to call you click here and they will do so at the time you specify. If you are looking for a quotation or need help designing your solution then click here. If you require access to our SECURE online catalogue then click here.