What regular network function is provided by a next-generation firewall (NGFW)?

A next-generation firewall (NGFW) integrates advanced security features, one of which is the intrusion prevention system (IPS). The primary function of an IPS is to monitor network traffic for suspicious activity and known threats, providing real-time prevention of attacks by blocking or mitigating identified vulnerabilities. This capability goes beyond traditional firewalls, which primarily focus on packet filtering and stateful inspection. By incorporating IPS functionalities, an NGFW can significantly enhance a network's security posture by detecting and responding to threats as they occur, rather than just logging them for review later.

The other options represent functions that may be important in network management and operations, but they do not inherently characterize the advanced security features of a next-generation firewall in the same way that an IPS does. Static IP management relates more to assigning and maintaining IP addresses than to real-time threat prevention, while bandwidth throttling concerns the control of data transfer rates rather than security. Wireless network control focuses on the management and security of wireless connections, which may be included in the capabilities of some firewalls but is not a defining feature of NGFWs.