Firewalls are a key component of network architecture, designed to block all network traffic except what is explicitly allowed. Operating at Layer 4, they typically manage TCP and UDP access to internal resources. Next-Generation Firewalls extend control across all OSI model layers, including Layer 7.
Traffic entering the network through a firewall is referred to as ingress traffic, while outgoing traffic is called egress.
A traditional Layer 4 firewall includes features such as:
Note: These firewalls are generally more affordable and provide greater throughput on the network compared to more advanced Next-Generation Firewalls. |
A modern firewall offers a broader range of capabilities than a traditional Layer 4 firewall, primarily focused on enhanced security features.
A Next-Generation Firewall (NGFW) can track active network connections, but it also has the ability to monitor:
Additional features of a Next-Generation Firewall (NGFW) include:
Note: The features available on your NGFW often depend significantly on the licenses purchased and the capabilities of the hardware hosting the firewall. |