Next-generation firewalls (NGFWs) aim to fill the gaps in protection that have become glaringly apparent in earlier
iterations as the cybersecurity threat landscape balloons. At their core, NGFWs aim to be more comprehensive in
evaluating data packets entering the network, applying granular, contextual information where necessary that oldschool firewalls couldn’t detect.
The most notable new features of NGFWs include intrusion prevention systems (IPSs) to help block bad actors from
infiltrating the network perimeter, along with advanced application- and user-aware controls. This is in large
part reactionary, as organizations have begun employing increasingly sophisticated and adaptive network security
policies as their data grows more vulnerable to threats.