The firewall can analyze the applications and content traversing the network. This detection can trigger additional security features, such as IPS, to safeguard the systems protected by the firewall.
Next-Generation Firewalls (NGFW) can also secure content accessed via HTTP. The firewall can reference a database that lists domains along with their respective categories, allowing it to enforce policies that permit only acceptable categories. For instance, users may be allowed to access news sites while being restricted from gambling sites.
The firewall can evaluate factors such as domain age and validity to block access to newly created or uncategorized domains and detect fraudulent activities by analyzing domain content. Instead of outright denying access, the firewall may intercept requests and redirect users to a captive web portal, where they can be warned about potential dangers or policy violations. Users may also have the opportunity to explain their need to access restricted content and continue if a valid reason is provided.
Domains can be categorized into various types, including websites that host content related to: