What are the blind spots for firewall? Why do we have so many products in cybersecurity fields?
Next generation firewall: other than protecting the corporation by limiting access by ports and ip. Product like paloalto have signature based and behaviour based protection. Also they comes with ips and ids solutions. But when it comes to application level. It is quite useless.
Application level firewall (waf): we use certificates to inspect traffic and with the proxy ip. We hide the internal ip for our applications. And also with the decrypted traffic we can inspect the packets again with owasp top 10 and again limit traffic access by ip and ports.
At this point, why do we still need to have security assessment, EDR, SOC, vscan and pentest if firewall of network layer and application layer already does it all?