The last few years have brought us arguably the most significant change in firewall technology in decades. Ever since "stateful inspection" was introduced by Check Point in the late 1990s, firewall administrators and information security officers have been defining security policies based primarily on a connection's source IP address, destination IP address and service. Now, with the so-called next-generation firewalls promoted by Palo Alto Networks and Check Point R75, policy can also be defined based on the application.
TechNewsWorld