Deep Packet Inspection

Unique technology to defend against advanced threats

McAfee deep packet inspection technology, built in to McAfee Next Generation Firewall, is designed to protect public web services, internal networks, and client users as they access the Internet. Deep packet inspection detects malicious activity within regular network traffic and prevents intrusions by blocking offending traffic automatically before any damage occurs.

Deep Packet Inspection

Client users accessing malicious websites are exposed to target-initiated attacks, while public web services must defend against direct exploit attempts. Traditional firewalls and IPSs are not enough to protect against these threats. Sophisticated inspection capabilities are required.

Next Generation Firewall uses protocol identification, normalization, and data stream-based inspection technology to detect and block threats, in both clear-text HTTP and inside encrypted HTTPS connections.

Always up to date, vulnerability-based protection fingerprints and recommended policy configurations are updated regularly via dynamic updates. Administrators have the option to automate the entire process when needed.

All deep packet inspection features are available in the different roles within Next Generation Firewall. Thus, the same inspection policy configuration with web filtering or encrypted web traffic inspection can be shared between firewall, IPS, and Layer-2 firewall roles.

Key Benefits

  • Full protection

    Protect vulnerable applications and operating systems from threats against client and server vulnerabilities.
  • Ultimate visibility

    Deep packet inspection for IPv6 and tunneled IP traffic.
  • Web filtering

    Control web browsing with category-based web filtering.