Cloud Management
Table of Contents
Expand All
|
Collapse All
Next-Generation Firewall Docs
-
-
- Cloud Management of NGFWs
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
- PAN-OS 9.1 (EoL)
-
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
-
-
-
- Cloud Management and AIOps for NGFW
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1
- PAN-OS 11.2
- PAN-OS 8.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 9.1 (EoL)
Cloud Management
Configure reconnaissance protection for IP protocol scan, UDP and TCP scans, and host
sweeps on Strata Cloud Manager.
You can configure protection against IP protocol scan, UDP or TCP scans, or host
sweeps for next-generation firewalls managed with Strata Cloud Manager.
- Configure Reconnaissance Protection.
- Select.ManageConfigurationNGFW andPrisma AccessDevice SettingsZones
- Select orAdd a Zone.If you add a zone:
- Enter aNamefor the zone.
- Select anInterface Type.
- AddorRemoveInterfaces.
- Select orCreate a NewZone Protection Profile.If you add a new Zone Protection profile:
- Enter aNamefor the profile.
- (Optional) Add a profile description.
- ConfigureFlood,Packet Based Attack,Protocol, orEthernetSGTsettings.
- SelectReconnaissanceand under Items,Enablethe scan types to protect against.
- For each scan, select anAction.If you selectBlock-IP, you must also configure theTrack-By(source or source-and-destination) andDurationoptions.
- For each scan, specify anInterval (Sec).This option defines the time interval, in seconds, for detection of the given scan type.
- For each scan, specify aThreshold (Events).The threshold defines the number of events that must be detected within the specified interval before the specified action triggers.
- (Optional) Configure the Source Address Exclusion List.Source Address Exclusions are IP addresses that you want to exclude from reconnaissance protection. You can specify up to 20 IP addresses or netmask address objects.
- ClickAddto create a new entry.
- Enter a descriptiveNamefor the address.
- Select anAddress Type.
- Specify one or moreIP Address(es).
- ClickAddto save the Zone Protection profile.
- Savethe Zone.
- Push Config.