Different from deploying new NGFW into pre-production networks, when the firewalls are in fact up and running in the production networks, any upgrade should be handled carefully.
Testing NGFW Performance White Paper
Regular software upgrades for firewalls deployed in the production network are essential to the success of enterprise information and data security.
With advanced features and functionalities, next-generation firewalls (NGFWs) are able to perform data inspection, application identification, content identification, user recognition, and treat traffic accordingly based on the rule and policy set defined by the security manager.
NGFW performance degradation vs. advanced features enabled has become a vital and sensitive issue for enterprises.
Each software upgrade released by NGFW vendors includes new features and functions, bug fixes, improvements, etc.
Before security engineers upgrade the deployed NGFWs in the network, intensive software performance testing is required.
The firewall software should be put to test under both modeled traffic as well as realistic application traffic in order to verify the specific performance of the rule and policy sets used by the enterprise as well as the general performance.
Xena provides a great variety of test solutions for such NGFW performance verification for post-production environments. TCP tweaking helps engineers to test firewall failover latency.
With VulcanAppMix, you are able to carry out application traffic test, protocol traffic test, traffic profile test, and customize mixes for specific requirements. The replay feature allows scalable performance test with great flexibility.
- Why NGFWs are Widely Deployed to Replace Traditional Firewalls
- What Can NGFWs Do?
- NGFW becoming the Performance Bottleneck
- The Importance of Verifying Performance after Software Update