Next-generation firewalls (NGFWs) and intrusion prevention systems (IPS) are security devices that monitor and control network traffic to protect against threats.
Function: NGFWs inspect packets, apply security policies, and can block malicious activities, while IPS devices detect and prevent intrusions in real-time.
Topology: NGFWs and IPS devices are typically placed at network perimeters or critical points to safeguard against external threats, as shown below:
