Mukesh Chanderia
PANORAMA
Hook Firewall & Panorama Step 1: Go to Firewall and add the IP address of Primary and secondary Panorama. Step 2: Go to Panorama and in...
top of page
Search
Mukesh Chanderia
Jan 31, 20221 min read
PA Interface Mgmt Profile & Captive Portal
Network > Network Profiles > Interface Mgmt It is used to control what protocols are allowed on interface. Now Go to Interface -->...
25 views0 comments
Mukesh Chanderia
Jan 31, 20221 min read
PA ZONE PROTECTION PROFILE & Sub Interface
Network > Network Profiles > Zone Protection Tcp SYN Cookies : It is a technique used to resist SYN flood attacks. An SYN flood attack is...
33 views0 comments
Mukesh Chanderia
Jan 30, 20221 min read
Install CA Certificate on PA
Step 1 : Generate Certificate through CSR [Certificate Signing Request]. Click : Request a Certificate Open CSR file in notepad & Copy...
16 views0 comments
Mukesh Chanderia
Jan 30, 20221 min read
PA LDAP AD AUTHENTICATION
The default port for LDAP is port 389, but LDAPS uses port 636 and establishes TLS/SSL upon connecting with a client. Step 1 : Create...
11 views0 comments
Mukesh Chanderia
Jan 30, 20222 min read
PA Decryption Policy
Decryption Policy for Outbound SSL Connection. Why do we require this policy ? We do require this policy for acting Palo Alto as a Man In...
14 views0 comments
Mukesh Chanderia
Jan 29, 20222 min read
PA UPGRADE
Device > Software Select Device > Software to view the available software releases, to download or upload a release, to install a release...
11 views0 comments
Mukesh Chanderia
Jan 28, 20222 min read
PA Dynamic Update & Licenses
Select Device > Dynamic Updates and check which Applications or Applications Threats to determine which update is Currently Installed....
26 views0 comments
Mukesh Chanderia
Jan 28, 20221 min read
PA Exporting And Importing Configs
Device --> Setup --> Operations Step 1 Save Name Configuration Step 2 Export Named Configuration Step 3 Import Name Configuration Step 4...
10 views0 comments
Mukesh Chanderia
Jan 24, 20221 min read
PA TEST 1
Now we may block website as a application as well. East-West traffic server to server within a data center North-South traffic describes...
36 views0 comments
Mukesh Chanderia
Jan 23, 20224 min read
Packet Flow in Palo Alto
Logic Flow 1) Initial Packet Processing --> Src Zone/Address/User ID --> Forwarding Lookup --> Destination Zone --> NAT policy evaluated...
228 views0 comments
Mukesh Chanderia
Jan 16, 20224 min read
Palo Alto HA
HIGH AVAILABILITY Pre-Requisites: - Same Hardware and Software version - Same Interfaces - Similar Licensing - There is only...
33 views0 comments
Mukesh Chanderia
Jan 16, 20221 min read
PA Packet Capture & Config Audit
Monitor --> Packet Capture Step 1: Create a Filter Click Manage Filter & set source and destination. Stage — Indicate the point at which...
25 views0 comments
Mukesh Chanderia
Jan 16, 20222 min read
PA Remote Access or GLOBAL PROTECT
GLOBAL PROTECT There are three components Global Protect Portal: : Can Have Multiple Gateway [Multiple Firewall to connect Main,DR]...
51 views0 comments
Mukesh Chanderia
Jan 12, 20225 min read
PA S2S or IPSEC VPN
Policy-based VPNs Policy-based VPNs encrypt a subsection of traffic flowing through an interface as per configured policy in the access...
39 views0 comments
Mukesh Chanderia
Jan 12, 20223 min read
Content ID & Security Profile
Content ID is built on single pass parallel Processing [SP3] architecture. Multiple threat prevention e.g., AntiSpyWare [Adware, key...
18 views0 comments
Mukesh Chanderia
Jan 10, 20221 min read
PA NAT LAB
Home LAB SETUP Laptop/PC - 8 GB RAM is recommended Requirements : 1) VM Workstation 2) PA Image Content ID & Global Protect isn't...
17 views0 comments
Mukesh Chanderia
Jan 5, 20224 min read
PA NAT
IP Address 1. Private IPs --> RFC 1918 (Request for Comment) Non-Routable over the internet. Locally Unique & Free to use. Class A =...
40 views0 comments
Mukesh Chanderia
Jan 3, 20222 min read
PA Initial Set Up
Dedicated out of band network management ethernet interface with default Ip address of 192.168.1.1 is pre-configured. You need to just...
18 views0 comments
Mukesh Chanderia
Dec 28, 20213 min read
Palo Alto Basic Concepts
Ethernet interfaces can be configured for Virtual-Wire, Layer 2, 3, & tap mode deployment. The interfaces that the Firewall supports are...
152 views0 comments
bottom of page