Network firewalls lie at the heart of any IT security strategy.
Cyberattacks and advanced hacking methodologies drive enterprises to review next-generation firewalls to improve their security. Many threats concealed within content, such as malicious emails and phishing schemes are delivered over the network undetected. Concerns about the rise of web-based malware and intrusion attempts bypassing perimeter protections to exploit applications, drive IT Security staff to have another look at their Next Generation firewall capabilities and advanced threat prevention.
The global Next-Generation Firewall Market is expected to grow at USD ~$4.69 Billion by 2023, at ~11.4% of CAGR between 2018 and 2023. It's the largest market in IT security products and still growing around 8 percent a year.
Director Solutions & Innovation Mohamed El Haddouchi noted earlier that NGFWs have become the norm.
"Next-generation capabilities have been achieved by all solutions in the enterprise network firewall market, but vendors differentiate on feature strengths and depth." - Mohamed El Haddouchi, Director Solutions & Innovation, Infradata
Survey organizations for the type of tools they deploy for IT security and they will vary. However, all of them will include a network firewall. Firewall technology has evolved significantly over the past decade. Now firewalls include application awareness, centralized management features, Deep Packet Inspection and 100Gbps threat protection for example.
Top NGFW features to look for
NGFWs contain features such as identity awareness, and support for single-enterprise firewalls, as well as branch offices, multi-tiered demilitarized zones (DMZs), and virtual versions that can be deployed within the cloud. Next-Generation Firewalls come with application awareness, reporting capabilities, comprehensive management tools, user control, intrusion prevention, policy enforcement for applications, alerting, sandboxing, and incorporate threat intelligence feeds.
“Next Generation FireWalls should be on every company's short list.” - Mohamed El Haddouchi, Director Solutions & Innovation, Infradata
The NGFW products to consider for 2019 in this list include those features and show vendors that differentiate themselves by adding additional and useful functionalities and flexible interfaces. Here is our pick of the top 5 vendors for NGFW in 2019.
With their ongoing commitment to an engineering-driven architectural approach to security, Fortinet ensures continuous innovation, providing customers with access to cutting edge security tools they need to enable success in the new digital economy. The FortiGate next gen firewall is a high-performance network security appliance that adds intrusion prevention, application control, and anti-malware to the traditional firewall-VPN combination. This NGFW provides one platform for end-to-end security across your entire network. By tightly integrating security and SD-WAN functionality, Fortinet aims to minimise management complexity, while ensuring a safer deployment and helping to reduce costs. The FortiGate Secure SD-WAN solution delivers functionality provided by SD-WAN vendors, including advanced security built into one single offering.
Juniper Networks SRX Firewall series
After updating its advanced threat prevention appliances to simplify security data integration last year, the on-premises devices now ingest and analyze data from any third-party firewall or security data source. This enables enterprises to respond to threats with one touch, detect malware and it also helps them to avoid vendor lock in. With Juniper's ATP platform as an open ecosystem, it work in conjunction with any firewall and SIEM. This makes it very compatible and it can be used right away in an environment. Detection and analysis as well as automation also enables the ability to do one-touch mitigation. A pretty unique way of approaching advanced malware.
Juniper Networks SRX next-generation firewalls use information from Juniper’s Sky Advanced Threat Protection cloud-based service and third-party GeoIP feeds to block malicious activities as they enter or traverse the network. It also provides application visibility and control, IPS and user-based application policies, plus unified threat management (UTM) to protect and control your business assets.
Check Point Advanced Threat Protection
Check Point is well known in the carrier space with over 2500 communication service provider (CSP) customers worldwide. Check Point also offers inspection on all LTE protocols, including GTP, SCTP and Diameter. This gives integrated security for LTE networks, protecting IP internet connectivity for devices with IPv4 and IPv6 addresses with the most scalable carrier-grade NAT (CGNAT) firewall.
Check Point’s enterprise firewall product line includes 17 appliances and two chassis for hardware blades, scaling up to 400 Gbps. It can also be delivered as a virtual appliance, deployed on VMware, Amazon Web Services (AWS), OpenStack and Microsoft Azure, or delivered as software.
Palo Alto Networks PA-Series
Palo Alto Networks' next-generation firewalls are all based on a consistent Single-Pass Architecture. Gartner recognized Palo Alto Networks as a Leader for the seventh time in their 2018 Magic Quadrant for Enterprise Network Firewalls, positioned highest in ability to execute and furthest in completeness of vision for enterprise network firewalls.
Palo Alto integration with GlobalProtect mobile security service extends policy-based security to mobile devices (whether on-premises or remote). Integration with threat intelligence services keeps information up to date for the firewall (e.g., URL categories, threat signatures). Palo Alto's PA-series' Next-Generation firewalls reduce response times with automated policy-based actions, and you can automate workflows via integration with administrative tools, such as ticketing services, or any system with a RESTful API.
Forcepoint's NGFW provides Enterprise SD-WAN connectivity and NGFW security for distributed enterprises. It includes centralizing monitoring, management and reporting across diverse virtual, physical and Cloud environments, as well as third-party devices. Optimized workflows streamline daily administrative tasks and security management for high efficiency and low total cost of ownership (TCO). The NGFW also helps understand the risk associated with unsanctioned cloud apps, to help redirect users to more appropriate apps or block them altogether. Policy changes and software updates can be deployed to hundreds of firewalls and IPS devices around the world in minutes without the need for service windows. Another advantage is that access policies can whitelist or blacklist specific endpoint apps, patch levels or AV status. Users' behaviors are consolidated into actionable dashboards giving it a 'human-centric' endpoint context.
15 January 2019