Can expedition help me to fine tune the policies based on PA - NGFW traffic logs

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Can expedition help me to fine tune the policies based on PA - NGFW traffic logs

L0 Member

Hi there ..

 

I have wide open policies with from ZaoneA to ZoneB or ZoneA to ZoneC with allowed full subnet and services any any ..

 

I want to ask , based of  traffic logs which shows the source / destination IP addresses ... will PA expedition will help me to fine-tune the policies to provide the source / destination addresses in order to implement the more specific rules 

1 REPLY 1

L6 Presenter

@Rizwan_Ali Yes, you can use ML feature , please refer to the Log analysis feature guide below:

https://live.paloaltonetworks.com/t5/expedition-articles/expedition-documentation/ta-p/215619?attach...

Also, you can reference to the tutorial video below:

https://www.youtube.com/playlist?list=PLD6FJ8WNiIqXAfspousboWn6AllrOWVMi

 

  • 900 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!