topic Re: Security Policy for SSL & Web-Browsing only in Next-Generation Firewall Discussions

Security Policy for SSL & Web-Browsing only

ArthurAT — Thu, 14 Nov 2024 07:45:47 GMT

Hi,

I was wondering, is it bad practice to create a security policy with only the applications SSL & Web-Browsing in it? Ensuring best practice security profiles are on the policy as well.

I've tried searching the web for suggestions and might be missing it. If someone can point me in the right direction?

Re: Security Policy for SSL & Web-Browsing only

arusharma — Thu, 14 Nov 2024 14:14:51 GMT

You cna begin from here: https://docs.paloaltonetworks.com/best-practices/internet-gateway-best-practices/best-practice-internet-gateway-security-policy/how-do-i-deploy-a-best-practice-internet-gateway-security-policy

It depends on your setup and what access you need to provide to the users.

Re: Security Policy for SSL & Web-Browsing only

ArthurAT — Thu, 14 Nov 2024 14:34:29 GMT

Thank you very much!

I'm also just curious what other environments do, not to say they are following best practice but just to find some extra knowledge from others.