Palo Alto Networks' Next-Generation Firewalls

Palo Alto Networks' next-generation firewalls and McEvoy Thomas provide network security by enabling enterprises to see and control applications, users, and content ' not just ports, IP addresses, and packets ' using three unique identification technologies: App-ID, User-ID, and Content-ID.

These identification technologies, found in Palo Alto Networks' enterprise firewalls, enable enterprises to create business-relevant security policies ' safely enabling organizations to adopt new applications, instead of the traditional 'all-or-nothing' approach offered by traditional port-blocking firewalls used in many security infrastructures.

App ID - a traffic classification technology that accurately identifies the applications, irrespective of port, protocol, SSL, or evasive tactic. It enables administrators to determine exactly which applications are running on their network.

User-ID - addresses the lack of visibility into user activity by seamlessly integrating with enterprise directory services (Active Directory, LDAP, eDirectory) to dynamically link an IP address to user and group information. In Citrix and terminal services environments, User-ID associates the individual user with their network activity, enabling IT to deploy granular security policies. Integration with other 3rd party repositories is enabled by an XML API.

Content-ID - melds a uniform threat signature format, stream-based scanning and a comprehensive URL database with elements of application visibility to detect and block a wide range of threats, control non-work related web surfing, and limit unauthorized file and data transfers. It includes vulnerability prevention (IPS), stream based virus scanning, URL filtering and data leak prevention.

Let Palo Alto and McEvoy Thomas keep you on track. Contact us today.