Tutorial: Configuring Your Security Policy

  Рет қаралды 38,335

Palo Alto Networks LIVEcommunity

Palo Alto Networks LIVEcommunity

Күн бұрын

View details at bit.ly/28JlJoc. Guidelines and best practices when building and reviewing your security policy. Let's take a closer look at zones, security profiles, and more. See more and learn more at live.paloalton...

Пікірлер: 17
@RogueDire
@RogueDire 6 жыл бұрын
Great video, I really would've loved to see more of "configuring security policy" best practices in terms of overall rule positioning i.e. top rules vs more specific or block rules etc. best practice to get started with a well structured sec policy and also cover more on app dependencies in a sec rule etc. thanks!
@sajjadanwer8908
@sajjadanwer8908 6 жыл бұрын
Well - explained Sir , Thanks for making this wonderful video .
@PANgurus
@PANgurus 6 жыл бұрын
thanks! :D
@HughJass-313
@HughJass-313 3 жыл бұрын
13:00 Where that link to the *File Blocking* video you spoke of? lol
@PaloAltoNetworksLiveCommunity
@PaloAltoNetworksLiveCommunity 3 жыл бұрын
Here you go 😉: kzbin.info/www/bejne/iKSsdaOKe6Z-gaM
@rastafariaanh1252
@rastafariaanh1252 4 жыл бұрын
Based on the policy match Palo Alto design + the rules order from the video ( with first rule with deny) , wouldn't all the traffic from the zones and subnets mentioned in the rules be Blocked by default, thus making the below rules to have no hits?
@PaloAltoNetworksLiveCommunity
@PaloAltoNetworksLiveCommunity 4 жыл бұрын
No, only the traffic that matches the applications configured in the blocked-apps-filter object will be denied by the first rule. Other traffic (read other applications) will not match this rule and will hit the below rules.
@rastafariaanh1252
@rastafariaanh1252 4 жыл бұрын
@@PaloAltoNetworksLiveCommunity but why? On the 1st policy look up, the matching is done based on src zone dst zone src ip dst ip + services .
@rastafariaanh1252
@rastafariaanh1252 4 жыл бұрын
@@PaloAltoNetworksLiveCommunity but why? On the 1st policy look up, the matching is done based on src zone dst zone src ip dst ip + services .
@delroyfletcher8089
@delroyfletcher8089 4 жыл бұрын
Is the 3rd WAN-connection rule allowing unsolicited inbound traffic from the internet?
@vindaniell1111
@vindaniell1111 3 жыл бұрын
I also think this allows unsolicited inbound traffic. Granted, only for approved apps but still not good.
@christianalinas
@christianalinas 4 жыл бұрын
Awesome!!!!
@PaloAltoNetworksLiveCommunity
@PaloAltoNetworksLiveCommunity 4 жыл бұрын
Thank you! Feel free to check out the LIVEcommunity page for more great info: live.paloaltonetworks.com
@amerrasheed3986
@amerrasheed3986 7 жыл бұрын
Great work
@PaloAltoNetworksLiveCommunity
@PaloAltoNetworksLiveCommunity 7 жыл бұрын
Thanks for your comment! We're glad you found the video helpful!
@muhammadikbalharahap3621
@muhammadikbalharahap3621 5 жыл бұрын
I want to limit bandwidth, how to configure on palo alto 220 ?
@PaloAltoNetworksLiveCommunity
@PaloAltoNetworksLiveCommunity 5 жыл бұрын
There are many things you can do to limit bandwidth. One way is with QoS. Please check out this video for more info: kzbin.info/www/bejne/bZe4amSJj5qres0
Tutorial: Understanding the NAT/Security Policy Configuration
12:47
Tutorial: Understanding the NAT/Security Policy Configuration
Palo Alto Networks LIVEcommunity
Рет қаралды 109 М.
Micro-Segmentation Best Practices with Palo Alto Networks
33:27
Micro-Segmentation Best Practices with Palo Alto Networks
Palo Alto Networks Ignite
Рет қаралды 5 М.
“Don’t stop the chances.”
00:44
“Don’t stop the chances.”
ISSEI / いっせい
Рет қаралды 62 МЛН
🎄✨ Puff is saving Christmas again with his incredible baking skills! #PuffTheBaker #thatlittlepuff
00:42
🎄✨ Puff is saving Christmas again with his incredible baking skills! #PuffTheBaker #thatlittlepuff
That Little Puff
Рет қаралды 24 МЛН
To Brawl AND BEYOND!
00:51
To Brawl AND BEYOND!
Brawl Stars
Рет қаралды 17 МЛН
Beat Ronaldo, Win $1,000,000
22:45
Beat Ronaldo, Win $1,000,000
MrBeast
Рет қаралды 158 МЛН
Tutorial: Auto-tagging & DNS Sinkhole
19:56
Tutorial: Auto-tagging & DNS Sinkhole
Palo Alto Networks LIVEcommunity
Рет қаралды 16 М.
Tutorial: Searching Through Logs: Where Do I Start?
15:00
Tutorial: Searching Through Logs: Where Do I Start?
Palo Alto Networks LIVEcommunity
Рет қаралды 25 М.
How Do You Use the Policy Optimizer? Learning Happy Hour Quick Shot
8:40
How Do You Use the Policy Optimizer? Learning Happy Hour Quick Shot
Palo Alto Networks LIVEcommunity
Рет қаралды 7 М.
Mastering Palo Alto Networks: Security Profiles Overview | packtpub.com
11:28
Mastering Palo Alto Networks: Security Profiles Overview | packtpub.com
Packt
Рет қаралды 5 М.
How to configure VLAN on Palo Alto Firewall
7:09
How to configure VLAN on Palo Alto Firewall
NETVN82
Рет қаралды 24 М.
How to Configure Security Policy in Palo Alto Firewall
29:14
How to Configure Security Policy in Palo Alto Firewall
Fresh Developer
Рет қаралды 16 М.
Palo Alto Firewall - Security Policy Rules [2023]
8:19
Palo Alto Firewall - Security Policy Rules [2023]
NETSums
Рет қаралды 9 М.
Configuring Firewall Zones And Interfaces On A Palo Alto Networks Firewall | PART 3
10:12
Configuring Firewall Zones And Interfaces On A Palo Alto Networks Firewall | PART 3
Keith Barker - The OG of IT
Рет қаралды 37 М.
Creating Security Policies in Palo Alto
5:38
Creating Security Policies in Palo Alto
Ed Goad
Рет қаралды 19 М.
PCNSE Prep - Authentication Policy with Multi-Factor Authentication
19:20
PCNSE Prep - Authentication Policy with Multi-Factor Authentication
Palo Alto Networks LIVEcommunity
Рет қаралды 17 М.
“Don’t stop the chances.”
00:44
“Don’t stop the chances.”
ISSEI / いっせい
Рет қаралды 62 МЛН