Best Security Firewall review

Reply
Highlighted
L3 Networker

Best Security Firewall review

Ok, I heard that palo alto does have a service that will review a firewall configs to make sure the Best Practices and Security Practices are being down. If this is true what is the service call and has anyone use this service ?

 

 

Tags (3)
L7 Applicator

Re: Best Security Firewall review

I don't know if Palo actually offers this directly (they might) but usually this is something that most vendors would pass off to one of their VARs/Resellers and they would perform the audit. We had one done earlier this year with a company that actually does all of the order prcoessing for our Palo equipment and licenses. 

L6 Presenter

Re: Best Security Firewall review

Doesn't get more "official" than SANS:

 

 

https://www.sans.org/reading-room/whitepapers/auditing/palo-alto-firewall-security-configuration-ben...

 

That being said best practice isn't always "best for your enviornment" 

L3 Networker

Re: Best Security Firewall review

Can you describe what they did like, did have  check list that goes with palo alto best security practices. 

DNS Sink check

Deny ACL placement check 

Zone recommendations 

Profile not best practices 

Did they verify all the best security practices are in place and correct working 

 

 

 

L3 Networker

Re: Best Security Firewall review

I agree best practices are not always best for enivorment. 

Just make sure when someone reviews the configs of the firewall they are making sure things work too. 

Thanks for the url link I will review it as well, nothing wrong with more information 

 

L7 Applicator

Re: Best Security Firewall review

If you are a large account, talk to your sales engineer about the Palo Alto professional services team.  They provide contract services such as the best practice review you are talking about.

 

If you purchase through a partner, they can provide these professional services to you as well.  Or check the partner list on the website for a provider in your area.

 

https://www.paloaltonetworks.com/services/cpsp-partners

Steve Puluka BSEET - IP Architect - DQE Communications (Metro Ethernet/ISP)
ACE PanOS 6; ACE PanOS 7; ASE 3.0; PSE 7.0 Foundations & Associate in Platform; Cyber Security; Data Center
L3 Networker

Re: Best Security Firewall review

I found this today

Is this something a company would use 

https://benchmarks.cisecurity.org/downloads/show-single/index.cfm?file=palofirewall.100

 

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!