Policy Management - Policy Enforcement Using EDL's
Security rules implementation is typically static, which means that any change in the security policy requires a configuration change on the firewall to update the security rules. Palo Alto Networks Firewalls have the capability to create dynamic security rules by using external dynamic lists. The main benefit of dynamic rules is to respond quickly to evolving threat sources and/or to maintain uninterrupted access to dynamic public cloud services without intervention of firewall administrator. The use of dynamic security rules also means that the responsibility to enforce a security policy will be delegated to systems and organizations other than the firewall and the firewall administrators. This Activity presents sound practices, technical guidelines, and generic processes and procedures that should allow any organization to safely handle the traffic whose underlying application couldn’t be identified by the firewall.