2Milestone: The Firewall as a Proxy
3Milestone: Packet Filters
During the early 1990s, there were also packet filters, which ran on servers that inspected traffic coming into the network. This is where administrators would create security policies and, in effect, rudimentary rule bases, which performed packet filtering based on five attributes of TCP/IP: Source IP, Source Port, Destination IP, Destination Port and Destination Protocol.
4Milestone: Stateful Firewalls
5Milestone: Unified Threat Management Becomes the Latest Buzzword
6Milestone: Next-Generation Firewalls (NGFWs)
The latest evolution in firewall IT is the next-generation firewall, which filters packets based on much more granular policies for application and user traffic. Additionally, these NGFWs can integrate IPSes as well as many other security functions into the firewalls’ decisions to block malicious traffic.
7Prediction: Firewalls Are Becoming Virtual
Over the next few years, organizations will see firewalls becoming much more virtual, instead of being a stagnant appliance on networks. Like a traditional firewall, these virtual/hypervisory-level firewalls will inspect packets and use security policy rules to block unapproved communication between virtual machines. While these virtual/hypervisor-level firewalls will not replace dedicated firewalls operating at or near wire speeds, there will be more demand for these firewalls as organizations begin to mix workloads with different security requirements on the same physical box.
8Prediction: Cloud-Based Firewalls
9Prediction: More Cross-Pollination With Other Security Capabilities
We’ve already seen a lot of integration with UTM technology and NGFWs, and we will move beyond simply adding more capabilities onto a box and more effectively integrating the data and capabilities to get faster and better decisions made. For example, this would mean having a security information and event management, or SIEM, platform correlate data from the gateway and dynamically adapt the firewall rules to mitigate specific threats.
10Prediction: Deeper Content Inspection
11Prediction: Managing Firewalls With the Business in Mind
More decisions in larger organizations will be made from the perspective of a business application, rather than from strictly a firewall/security perspective as networks become increasingly complex. This is a trend throughout the software industry. By business application, we mean—as one example—a credit card processing service that is necessary for an e-commerce organization to run and make money. Therefore, if a firewall rule is preventing the application from working or slowing down the performance, then the organization will suffer. This is a new way of looking at how firewalls are managed, which continues to evolve.