What are Labs?
The goal is to take part in the ongoing and open discussion of these challenges. We welcome suggestions for future Labs or if you are so inclined you can create your own Lab and share it with us via firstname.lastname@example.org
If you would like to be notified by email when new labs become available, sign up here.
Network Security Systems, including firewalls, can be configured to control (permit or deny) encrypted traffic, but cannot decipher the contents of the encrypted communication. The Transport Layer Security (TLS), along with it’s predecessor Secure Socket Layer (SSL) protocol, have become extremely popular choices for encrypting network communication, especially Internet web server traffic. Palo Alto Networks firewalls offer features to decrypt SSL/TLS traffic, providing increased visibility and threat protection. This lab exercise will walk you through enabling those features.
Troubleshooting with counters, test, and Flow Basic
There are a myrid of decision points the firewall makes on a session as it is processed adding complexity to the task of locating the root cause when the packets don’t flow as planned. Your mission, should you choose to accept it, is to leverage global counters, the test command, and the flow basic capabilities via the CLI to get a deeper view into what is happening to the packets traversing the firewall.
Enabling Zone and DoS Protection in Palo Alto Networks Firewalls
October 6, 2017
Denial of Service (DoS) and Distributed Denial of Service (DDoS) types of attack are attempts to disrupt network services byRead More
Automated Reporting in Palo Alto Firewalls
March 7, 2017
Your mission, should you choose to accept it, is to automate the generation and delivery of the various different reportsRead More