Mastering Palo Alto Networks
Cybersecurity
Book Details
Book Title
Mastering Palo Alto Networks: Build, configure, and deploy network solutions for your infrastructure using features of PAN-OS
Author
'Tom Piens aka 'reaper
Publisher
Packt Publishing
Publication Date
2022
ISBN
9781803241418
Number of Pages
745
Language
English
Format
File Size
12.2MB
Subject
Network Security
Table of Contents
- Contents
- Preface
- Chapter: Understanding the Core Technologies
- Technical requirements
- Understanding the zone-based firewall
- Understanding App-ID and Content-ID
- The management and data plane
- Authenticating and authorizing users with User-ID
- Summary
- Chapter: Setting Up a New Device
- Technical requirements
- Gaining access to the user interface
- Adding licenses and setting up dynamic updates
- Upgrading the firewall
- Hardening the management interface
- Understanding the interface types
- Summary
- Chapter: Building Strong Policies
- Technical requirements
- Understanding and preparing security profiles
- Understanding and building security rules
- Creating NAT rules
- Summary
- Chapter: Taking Control of Sessions
- Technical requirements
- Controlling the bandwidth with quality-of-service policies
- Leveraging SSL decryption to look inside encrypted sessions
- Redirecting sessions over different paths using policy-based forwarding
- Summary
- Chapter: Services and Operational Modes
- Technical requirements
- Applying a DHCP client and DHCP server
- Configuring a DNS proxy
- Setting up High Availability
- Enabling virtual systems
- Managing certificates
- Summary
- Chapter: Identifying Users and Controlling Access
- Technical requirements
- User-ID basics
- Configuring group mapping
- Setting up a captive portal
- Using an API for User-ID
- User credential detection
- Summary
- Chapter: Managing Firewalls through Panorama
- Technical requirements
- Setting up Panorama
- Device groups
- Setting up templates and template stacks
- Panorama management
- Summary
- Chapter: Upgrading Firewalls and Panorama
- Technical requirements
- Documenting the key aspects
- Preparing for the upgrade
- The upgrade process
- The rollback procedure
- The downgrade procedure
- Special case for upgrading older hardware
- Summary
- Chapter: Logging and Reporting
- Technical requirements
- Log storage
- Configuring log collectors and log collector groups
- Cortex Data Lake logging service
- External logging
- Configuring log forwarding
- Reporting
- The Application Command Center
- Filtering logs
- Summary
- Chapter: Virtual Private Networks
- Technical requirements
- Setting up the VPN
- Summary
- Chapter: Advanced Protection
- Technical requirements
- Custom applications and threats
- Zone protection and DoS protection
- Summary
- Chapter: Troubleshooting Common Session Issues
- Technical requirements
- Using the tools at our disposal
- Interpreting session details
- Using the troubleshooting tool
- Using maintenance mode to resolve and recover from system issues
- Summary
- Chapter: A Deep Dive into Troubleshooting
- Technical requirements
- Understanding global counters
- Analyzing session flows
- Debugging processes
- CLI troubleshooting commands cheat sheet
- Summary
- Chapter: Cloud-Based Firewall Deployment
- Technical requirements
- Licensing a cloud firewall
- Deploying a firewall in Azure from the Marketplace
- Bootstrapping a firewall
- Putting the firewall in-line
- Summary
- Chapter: Supporting Tools
- Technical requirements
- Integrating Palo Alto Networks with Splunk
- Monitoring with Pan(w)achrome
- Threat intelligence with MineMeld
- Exploring the API
- Summary
- Other Books You May Enjoy
- Index