PAN-OS
Table of Contents
Expand All
|
Collapse All
Next-Generation Firewall Docs
-
-
- Cloud Management of NGFWs
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
- PAN-OS 9.1 (EoL)
-
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
-
-
-
- Cloud Management and AIOps for NGFW
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1
- PAN-OS 11.2
- PAN-OS 8.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 9.1 (EoL)
PAN-OS
PAN-OS: Prevent attackers from probing your network for vulnerabilities by
configuring reconnaissance protection.
- Configure Reconnaissance Protection.
- Select.NetworkNetwork ProfilesZone Protection
- Select a Zone Protection profile, orAdda new profile and enter aNamefor it.
- On the Reconnaissance Protection tab, select the scan types to protect against.
- Select anActionfor each scan.If you select Block IP, you must also configure theTrack By(source or source-and-destination) andDurationoptions.
- Set theIntervalin seconds. This option defines the time interval for port scan, host sweep, and IP protocol scandetection.
- Set theThresholdfor reconnaissance events. The threshold defines the number of port scan, host sweep, or IP protocol scanevents that need to occur within the specified time interval to trigger an action.
- (Optional) Configure a Source Address Exclusion.Source Address Exclusions are IP addresses that you want to exclude from reconnaissance protection. You can specify up to 20 IP addresses or netmask address objects.Exclude only IP addresses for trusted internal groups that perform vulnerability testing.
- Addthe address you want to exclude.
- Enter a descriptiveNamefor the address.
- For Address Type, select eitherIPv4orIPv6, and then select an address object or enter one manually.
- ClickOK.
- ClickOKto save the Zone Protection profile.
- Commityour changes.
- Apply the Zone Protection profile to the appropriate zones, including zones that connect to the internet.