What is one benefit of using a next-generation firewall rather than a stateful firewall?
- reactive protection against Internet threats
- support of TCP-based packet filtering
- support of logging
- integrated use of an intrusion prevention system (IPS)
Explanation: Stateful firewalls and next-generation firewalls provide better log information than a packet filtering firewall, both defend against spoofing, and both filter unwanted traffic. Next-generation firewalls provide the following benefits over stateful firewalls:
- Granularity control within applications
- Website and application traffic filtering based on site reputation
- Proactive rather than reactive protection from Internet threats
- Enforcement of security policies based on multiple criteria including user, device, role, application, and threat profile
- Improved performance with NAT, VPN, and stateful inspections
- Integrated IPS
Exam with this question: Module 9: Quiz – Firewall Technologies Network Security
Exam with this question: Network Defense: Module 5.3.2 Firewall Technologies Quiz
Exam with this question: Network Defense - My Knowledge Check Answers
Please login or Register to submit your answer