Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- ›
- About JessicaDavis
About JessicaDavis
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
09-23-2020
1Post
0Likes
0Solutions
Sep 23, 2020Last Visited
User
Activity
User
Profile
Latest posts by JessicaDavis
| Subject | Views | Posted |
|---|---|---|
| 287 | 09-01-2020 10:27 AM |
User Badges
Public Statistics
| Date Registered | 04-24-2020 10:07 AM |
| Date Last Visited | 09-23-2020 01:53 PM |
| Total Messages Posted | 1 |
09-01-2020
10:27 AM
I'm working through a best practices assessment and one of the recommendations is to create security policies to deny traffic inbound or outbound to the two default external dynamic lists: 'Palo Alto Networks - Known malicious IP addresses' and 'Palo Alto Networks - High risk IP addresses'. My concern, though, is that we have multiple sites connected via VPN, as well as numerous business critical connections. I would like to be able to put an exception in for these in advance, if possible, to make sure that if one of those critical IPs somehow gets added to the list we don't lose a connection to a remote site, or or drop a vendor connection. Unfortunately, it doesn't appear that there's any option to add manual entries, or override the EDL. The next option that comes to mind, then, would be to put this deny rule after all the other allow rules, which somewhat defeats the point of a 'deny evil IPs' rule. Any thoughts, or suggestions?
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
09-23-2020
01:53 PM
|
Latest Blogs
Latest Posts
Copyright 2007 - 2021 - Palo Alto Networks
