October 15, 2021

Does firewall solves all your problems? What are their blind spots?

What are the blind spots for firewall? Why do we have so many products in cybersecurity fields?

Next generation firewall: other than protecting the corporation by limiting access by ports and ip. Product like paloalto have signature based and behaviour based protection. Also they comes with ips and ids solutions. But when it comes to application level. It is quite useless.

Application level firewall (waf): we use certificates to inspect traffic and with the proxy ip. We hide the internal ip for our applications. And also with the decrypted traffic we can inspect the packets again with owasp top 10 and again limit traffic access by ip and ports.

At this point, why do we still need to have security assessment, EDR, SOC, vscan and pentest if firewall of network layer and application layer already does it all?

Comments

shiftybyte

Firewall doesn’t know if it’s configured correctly.

Without knowing what is running on the network, no one does.

Who knows about all the services that run on the network? No one.

That is why you need pentests, and reviews and other things that discover that one server someone turned on misconfigured and left forgotten.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.