This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

About BatD

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
BatD
since ‎10-05-2017
L4 Transporter
User Activity
User Profile
User Badges
Community Statistics
Member Since ‎10-05-2017 06:04 AM
Date Last Visited
Posts 164
Total Likes Received 44

Re: NRD protection

by in Threat & Vulnerability Discussions
‎01-07-2020 01:24 AM
‎01-07-2020 01:24 AM
@ehartcoghlin You are correct that the URL filtering will only work on client to server web traffic. It can only control users accessing particular domains, but not traffic initiated from those domain. The reason is that the firewall can only see the source IP in incoming traffic and URL filtering looks at the actual URL in the http headers.  Surely you can filter particular emails at the email server level or if you have the feed of IPs of NRDs, then you can import it as an dynamic IP list in the firewall and block SMTP traffic based on that list.  ... View more

Re: What is the meanings for URL and destination under the URL filtering?

by in Threat & Vulnerability Discussions
‎01-07-2020 01:15 AM
‎01-07-2020 01:15 AM
@wahxwah URL is the url user is trying to access as taken from the HTTP header, or as in your case of encrypted traffic, from the SSL Certificate.  Destination is the actual destination IP of the session. I am not sure why you are getting the output in the below, but there will be more information if you can share the detailed log. I wonder if you have selected the "Resolve hostname" checkbox at the bottom of the screen and the firewall is trying to do reverse lookup for the IP.  ... View more

Re: How Do You Authenticate Users From Specific IP Ranges for Admin Device Access?

by in General Topics
‎01-06-2020 03:18 PM
‎01-06-2020 03:18 PM
@blwavg The users need to be identified somehow at policy level, and the other option is to use Authentication Policy (preciously known as Captive Portal)  to grant access to the firewall management. This will allow you to configure very granular control of which use can manage the firewall from particular subnet.  ... View more

Re: How Do You Authenticate Users From Specific IP Ranges for Admin Device Access?

by in General Topics
‎01-06-2020 01:36 AM
‎01-06-2020 01:36 AM
@blwavg You answered the question in your description, this can easily be achieved by using Global Protect and you shlould never really be exposing unprotected admin access to internet.   If you are using UserID and dynamic admin authentication, you can potentially create granular access policies for the internal network as you described. However you cannot do it from internet, as the firewall will need to know the user to ip mapping for the specific admin and the Internet admin can have any IP.  ... View more

Re: Secure SD-WAN and New PAN-OS 9.1

by in Blogs
‎12-13-2019 03:04 AM
‎12-13-2019 03:04 AM
@Taraka You can see details of supported platforms below. Looks like 3000 series will be supported , but 5000 ar not.  https://www.paloaltonetworks.com/services/support/end-of-life-announcements/hardware-end-of-life-dates ... View more
Register or Sign-in
Contact Me
Latest Tags
No tags yet
LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks