Firewall Evolution - Deep Packet Inspection

by Ido Dubrawsky
Sept. 25, 2017 1 comment Symantec Detection & Response firewall

Firewalls provide a variety of services to networks in terms of security. They provide for network address translation (NAT), virtual private networks (VPN), and filtering of traffic that does not conform to the network's stated security policy. There are many forms of firewalls from simple packet filters to circuit-level gateways to proxy firewalls. Firewalls are being asked to fill a larger and more varied role in network security these days than several years ago. One of the more recent innovations in firewall technology is the application of deep packet inspection or DPI. Deep Packet Inspection can be seen as the integration of Intrusion Detection (IDS) and Intrusion Prevention (IPS) capabilities with traditional stateful firewall technology. Traditional networks have a defined boundary demarcated by a firewall with an IDS sensor sitting behind it.

2flash 4 months, 3 weeks ago

Simple and objective! A great piece on Firewall evolution! It would be though interesting to also read something more recent from the same author :)