Firewalls
2nd Generation firewall technology is generally referred to as stateful packet inspection as it maintains records of all connections passing through the firewall. This type of firewall can help prevent attacks which exploit existing connections, or certain Denial-of-service attacks.
Next Generation firewalls work on the application level of the TCP/IP stack and may intercept all packets traveling to or from an application. They block other packets and in principle, application firewalls can prevent all unwanted outside traffic from reaching protected machines.
Palo Alto Networks
Palo Alto Networks’ next-generation firewalls enable enterprises to see and control applications, users, and content – not just ports, IP addresses, and packets – using three unique identification technologies: App-ID, User-ID, and Content-ID. These identification technologies enable enterprises to create business-relevant security policies – safely enabling organizations to adopt new applications, instead of the traditional “all-or-nothing” approach offered by traditional port-blocking firewalls.
Checkpoint
Check Point Security Gateways provide the most comprehensive, flexible and extensible security while keeping security operations simple and affordable.
