Granular application control drives next gen firewalls
Friday, 29 April 2011 22:11

First there was AOL.  Remember how hard it was to block access to what most admins considered a trivial time waster?  AOL would change their IP addresses on a regular basis twhich made it hard for firewalls to block access. And then there the peer to peer apps that gave firewalls nervous breakdowns. Skype is still a challenge for many organizations. Because it is peer to peer and uses an encryption scheme it is very hard to write a simple rule for blocking it.  Skype detection has becom a selling point for UTMs and firewalls that go beyond stateful connections and look into actual traffic.   Now application awareness is the defining feature of advanced firewalls.

Web apps in particular have become a nightmare for IT staff.  Should users be allowed to use Twitter, URL shortners like or, or even FaceBook? And if they do what should they be allowed to do within the app?  Posting updates is one thing. Playing Mafia Wars is another.

I interviewd Chris King, Director of Product Marketing at Palo Alto Networks (PAN to insiders) to find out more about application control in the network and PAN's Next Generation Firewalls.


Dim lights Embed Embed this video on your site

Add New Search
[b] [i] [u] [url] [quote] [code] [img] 
Please input the anti-spam code that you can read in the image.

3.26 Copyright (C) 2008 / Copyright (C) 2007 Alain Georgette / Copyright (C) 2006 Frantisek Hliva. All rights reserved."