There are a series of tools that seek to limit what attackers, once they have penetrated the network or IT infrastructure scope, can do inside that network.
These include firewalling and web filtering.
Firewalling is a solution that monitors incoming and outgoing connections to an IT network by filtering data packets based on predefined security rules. This limits unauthorised connections and only allows trusted connections. There are next-generation firewalls that use advanced techniques such as threat analysis, anomalous behaviour detection, and DLP.
Meanwhile, web filtering restricts access to certain parts of the internet for security reasons or to ensure compliance with company policies or protect users from inappropriate and malicious content.