compared to other firewall technologies. It is not aware of the packet payload. Because these firewall are becoming more sophisticated with advance technology to detect threats these firewalls will be the next defence if the hardware firewall fails to detect the threat. Block connections from specific hosts or networks.

The administrator can define rules which packets are accepted and which packets are denied. The second main approach is where the software uses is behaviour based detection. Behaviour based detection is more of an advance approach for antivirus software because it does not need the virus definitions to detect threats, it will detect threats even before the virus definitions are been downloaded. A firewall provides configurable network access, authentication before accessing services and other services as well. Application level gateways The third generation of firewall architectures is called Application level gateways.

