Say Hello to the Future: Next-generation Firewalls

It should be clear to all that cyber-security is becoming increasingly important and IT security budgets are going to grow. So, let’s take a look at some of the details connected with this.


Next-generation firewalls: what are they?

The technological world is changing rapidly, and with it, security threats are advancing. Hackers are always seeking new opportunities to attack. This means that the standard tools that companies have been using for years are no longer sufficient; only next-generation firewall can ensure adequate protection.

According to Gartner, a next-generation firewall is a “deep-packet inspection firewall that moves beyond port/protocol inspection and blocking to add application-level inspection, intrusion prevention, and bringing intelligence from outside the firewall”. These forms of protection are part of the third-generation of firewall technology.

Next-gen firewalls offer all the benefits of traditional firewalls, but are more advanced.  So, for example, both support VPN and use static and dynamic packet filtering to ensure that all connections  between the network, Internet and firewall are secure and valid, and can translate network and port addresses in order to map IPs.

What makes next-generation firewall better? The fundamental difference is that next-gen firewalls are able to filter packets based on applications.  They can also have an extensive view of and control over an application that uses analysis and signature matching for identification. Next-generation firewalls can use signature-based IPs or white lists to distinguish between safe applications and unwanted ones, and identify them by using SSL decryption. Unlike traditional firewalls, next-gen firewalls include a path through which future updates will be installed.


Why use next-generation firewalls?

There are benefits that traditional firewalls simply do not offer. For example, next-gen firewalls can block malware from entering the network.  They are also able to address advanced persistent threats (APTs).  Next-generation firewalls combine advantages and functions of antivirus software, firewalls and other tools in one solution, so they can be a cost-optimal choice for companies which need to improve their security but do not have the budget or skills to implement a complex set of tools.


Some kind of firewall is a must for every business. However, in today’s world, choosing a next-generation firewall is a better option because threats to corporate and personal cyber-security change rapidly. Thanks to their flexibility and comprehensive functions, next-gen firewalls can protect users from a broad spectrum of intrusions. As with most tools, they are not the perfect solution for every business, but they are at least worth considering. More information about Comarch IT Security solutions you can find here.


Dagmara Skomra,
Product Manager at Comarch

Tell us your business needs, and we’ll find the perfect product