Google Cloud NGFW is a cloud-first network security solution that offers advanced threat protection and operational simplicity. It includes a fully distributed, stateful inspection firewall engine and an Intrusion Prevention System (IPS) powered by Palo Alto Networks. The service provides granular control over network traffic using IAM-governed tags and hierarchical firewall policies.

Key Features

• Stateful Inspection: Inspects network traffic to ensure only authorized data is allowed.
• Intrusion Prevention System (IPS): Protects against malware, spyware, and command-and-control attacks.
• Hierarchical Firewall Policies: Allows policies to be defined at the organization, folder, and project levels.
• Tag Integration: Uses IAM-governed tags for granular control over traffic.
• Google Cloud Threat Intelligence: Includes curated threat lists for enhanced protection.
• FQDN and Geolocation Objects: Supports domain name and geolocation-based filtering.
• TLS Decryption: Inspects encrypted traffic for threats.

Benefits

• Enhanced Security: Offers robust protection against various network threats.
• Operational Simplicity: Easy deployment and management of firewall policies.
• Granular Control: Allows precise control over network traffic using tags and hierarchical policies.
• Scalability: Supports global and regional network policies across multiple regions.