Home / ForcePoint / Introduction to Forcepoint Next Generation Firewalls

Introduction to Forcepoint Next Generation Firewalls

Today I am going to talk about one of the visionary in Gartner 2018 magic quadrant for Next Generation Firewall segment. As there are lot of vendors in the Next Generation Firewall like Cisco, Palo-Alto, Checkpoint and Fortinet as they are the leaders in the Gartner quadrant.

As per the strategy of the Forcepoint, They come up with the Next Generation Firewalls with SDWAN features in it. As we know many security players try to get the SDWAN as a feature for deploying WAN and trying to get away from MPLS which is expensive solution for industries. We are not going to talk about the SDWAN here as we already covered the basics of SDWAN already in my previous articles.

What is Forcepoint Next Generation Firewalls and what other features it includes ?
Forcepoint Next Generation Firewall (NGFW) comprises rapid, adaptable networking with business prominent security to associate and defend individuals and the information they use through assorted, growing enterprise networks.

Forcepoint NGFW delivers reliable security, efficiency and operations across physical, virtual and cloud systems. It’s intended from the ground up for high accessibility and scalability, as well as centralized administration with full 360° visibility.

A unified software core permits Forcepoint NGFW to grip numerous security roles, from  firewall/VPN to IPS to layer 2  firewall, in energetic business situations. Forcepoint NGFWs can be implemented in a variety of ways (e.g., physical, virtual, cloud appliances), all managed from a single console.

It comprises granular application control, intrusion prevention system (IPS) protections, built-in virtual private network (VPN) control and mission-critical application proxies into an competent, extensible and extremely scalable design. Anti-evasion technologies interpret and regularize network traffic before review and across all protocol layers to rendering and block the most advanced attack methods.

Fig 1.1- Forcepoint Next Generation Firewalls
Forcepoint Next Generation Firewalls automatically whitelist or blacklist network traffic beginning from exact applications on PCs, laptops, servers, file shares and other endpoint devices built on highly granular endpoint contextual data. It goes beyond typical firewalls to avoid attempted sensitive data from endpoints via unauthorized programs, web applications, users and communications channels.

Now as we know what is the Forcepoint Next Generation firewalls, now let’s see what other key features we will get from Forcepoint Next Generation Firewalls.

What are the Key Features of Forcepoint Next Generation Firewalls ?
  • SD-WAN connectivity at enterprise scale
  • Built-in IPS with anti-evasion defenses
  • High-availability clustering of devices and networks
  • Automated, zero-downtime updates
  • Policy-driven centralized management
  • Actionable, interactive 360° visibility
  • Sidewinder security proxies for mission-critical applications
  • Human-centric user and endpoint context
  • High-performance decryption with granular privacy controls
  • Whitelisting/blacklisting by client application and version
  • CASB and Web Security integration
  • Anti-malware sandboxing
  • Unified software for physical, AWS, Azure, VMware deployments. 

What are the Firewall features we will get from the Forcepoint Next Generation Firewalls?
  • Deep Packet Inspection
  • User Identification
  • Proxy Redirection
  • URL Filtering with Custom or imported URL lists
  • Basic Routing like RIPv2, RIPng, OSPFv2, OSPFv3, BGP, MP-BGP, BFD, PIM-SM, PIM-SSM, IGMP proxy