Cisco Certified Network Associate (ccna) Practice Lab
Next-Generation Firewalls
Download 1.21 Mb.
|
- Navigate this page:
- Exercise 4 - Next-Generation IPS
Next-Generation FirewallsNext-Generation Firewalls (NGFW) belong to the third generation of firewall technology. It combines the functionality of a traditional firewall with other networks and application firewalls using in-line deep packet inspection (DPI), advanced malware protection, and URL filtering. NGFW generally has the following features: Application Awareness Stateful Inspection Integrated Intrusion Protection System (IPS) Identity Awareness (User and Group Control) Bridged and Routed Modes These firewalls work better and faster than traditional firewalls, and they are better in controlling the traffic entering and exiting a network. Traditionally, firewalls and intrusion prevention systems are separate devices. But NGFW integrates firewall and intrusion prevention system (IPS) capabilities into one device. This integration provides improved performance and accessibility. Below are a few examples of NGFW devices: Cisco Firepower 1000 Series Cisco Firepower 2100 Series Cisco Firepower 9300 Series Note: If you would like to learn more about the different NGFW devices that are available, use your favourite search engine to research this topic in more detail. There are no screenshot items for this exercise. Exercise 4 - Next-Generation IPSNext-Generation Intrusion Prevention System(NGIPS) provides additional capabilities to secure the network from threats. It is used alongside firewalls to prevent any malicious attacks in the network. NGIPS is a security device that works with predefined signatures. These signatures are codes of known exploit. When a threat is discovered, its signature is added to the dictionary. In this exercise, you will learn about the NGIPS security device. Download 1.21 Mb. Share with your friends:
|