I have a stateful inspection firewall protecting our network. There are some "one-to-one" NAT settings, so we can send and receive e-mail. Are we still vulnerable to application attacks (like the Windows OS vulnerabilities) if we have a firewall? Is there something else we can do to protect ourselves?
Firewalls do not stop everything. There are some Windows vulnerabilities that can be exploited by malicious Web sites. If a user visits that site, they are "had." Since your firewall probably allows users to surf the Internet and allows Internet responses to come back through, those attacks sail right through the firewall. Other exploits come in via e-mail, typically in attachments that users open without thinking about where they came from.
Some things you can do are:
For more info on this topic, visit these SearchSecurity.com resources:
Dig Deeper on Application Firewall Security
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.