Cyber Security - Palo Alto Security Policies

Posted keepmoving1113

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了Cyber Security - Palo Alto Security Policies相关的知识,希望对你有一定的参考价值。

Task 3

The SOC(Security Operation Center) monitoring team dashboard reported more 1,000 requests to one of our eCommerce Server HTTPS portals in a matter of minutes. The source address identified by our SOC came from Africa and we only serve customers in the United States, China, and Europe.

Please block access to our DMZ from all the internet but allow the USA, China, and Europe.

Configure the firewall policy. Please mind that the order of this policy may affect the effect.

技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 Task 4

Last week after a policy change by another engineer, users from the marketing department were able to access the HR Fileserver shares.

Can you identify the root cause and remediate this issue asap?

Configure firewall policies.

技术图片

 

 

Policy one: HR-Allow-HR-Servers

技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 Policy Two: Deny-Access-to-HR_Servers

技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

以上是关于Cyber Security - Palo Alto Security Policies的主要内容,如果未能解决你的问题,请参考以下文章

Cyber Security - Palo Alto Firewall V-Wires

Cyber Security - Palo Alto Firewall Objects Addresses, Services, and Groups

Cyber Security - Palo Alto Firewall Objects Addresses, Services, and Groups

palo alto 和 check point防火墙的区别

security3权限管理:SecurityMetadataSource不支持FilterInvocation?

如何添加 content-security-policy 头?