Firewalls are evolving slowly as vendors realize that a perimeter firewall based on source and destiantion and session state are commodity items and are no longer effective in protecting the Enterprise. Vendors are building in additional capabilities such as session analysis tools to enhance their capability and provide features beyond stop or go packet inspection.
Vendors We Like
- Palo Alto Networks
Vendors we have to deal with
- Cisco ASA/PIX
Firewall Vendors Sit Back and Count the MoneyTime to Pay the Piper
The big firewall vendors have spent a mere pittance in developing firewall technologies over the last few years, more like ten years. It was nice to see Palo ALto Networks tweak the other firewall vendors into action and finally enhance their technologies. We in the field need good products to protect the companies who trust us to do our very best. We expect our vendors to do the same, we agree everyone needs to make some money but for too long firewall technology has gone nowhere, forcing the engineering staff to bolt on other security controls. We applaud Palo Alto for taking market share since the "other" bigger players have been busy spending their maintenance renewals on everything else but engineering research