>
    Management Features
    Focus
    Download PDF
    Focus
    1. Home
    2. PAN-OS
    3. Features Introduced in PAN-OS 11.2
    4. Management Features
    Download PDF

    Management Features

    Table of Contents

    Management Features

    What new management features are in PAN-OS 11.2?

    Configuration File Compression

    May 2024
    • Introduced in PAN-OS 11.2.
    When you push a configuration change from
    Strata Cloud Manager
    , the XML configuration file containing the existing and new configurations is pushed from
    Strata Cloud Manager
     to your
    NGFW (Managed by Strata Cloud Manager)
    .
    Strata Cloud Manager
     now compresses the pushed XML configuration file exchanged by at least 15% if your
    NGFW (Managed by Strata Cloud Manager)
     is running PAN-OS 11.2. All
    NGFW (Managed by Strata Cloud Manager)
     responses, such as confirming that the XML config file was received and the commit status, queries for data, and complete and read operations from
    Strata Cloud Manager
     are also compressed and reduced by at least 15%. This helps reduce the time it takes to push configuration changes from
    Strata Cloud Manager
     and query for information from your
    NGFW (Managed by Strata Cloud Manager)
    . The compression has no impact on management or data processing functionality.

    Strata Cloud Manager Connectivity Using Port 443

    May 2024
    • Introduced in PAN-OS 11.2.
    Palo Alto Networks
    NGFW (Managed by Strata Cloud Manager)
     use the dedicated non-standard port 3978 to communicate with
    Strata Cloud Manager
     by default. In PAN-OS 11.2, you can instead configure
    NGFW (Managed by Strata Cloud Manager)
     onboarding to
    Strata Cloud Manager
     to use destination port 443 instead of port 3978. Ports 3978 and 443 offer the same functionality for
    NGFW (Managed by Strata Cloud Manager)
     and
    Strata Cloud Manager
     communication. However, port 443 offers some distinct advantages when managing your network configurations, reducing your network attack surface, and implementing Security policy rules and audits:
    • Ease of Configuration and Use
      —Port 443 is the standard port used for HTTP traffic encrypted with SSL. Using port 443 for
      NGFW (Managed by Strata Cloud Manager)
       and
      Strata Cloud Manager
       communication greatly simplifies network configuration management for both administrators and end users.
      Additionally, many corporate networks restrict incoming and outgoing traffic to a limited set of ports to minimize the network attack surface area. Port 443 is already commonly allowed on most enterprise networks without the need for additional network configurations. Using port 443 for
      NGFW (Managed by Strata Cloud Manager)
       and
      Strata Cloud Manager
       communication also improves your security posture by reducing the number of ports allowed on your network.
    • Improved Compatibility
      —Port 443 is universally accepted and is the expected port for secure communications. Security tools that use port 443 are normally compatible with existing security configurations. This greatly reduces the need for custom firewall configurations and rules.

    View Preferred and Base Releases of PAN-OS Software

    May 2024
    • Introduced in PAN-OS 11.2.
    The Panorama web interface now displays the preferred releases and the corresponding base releases of PAN-OS software. Before you upgrade or downgrade Panorama or PAN-OS, you can view the list of preferred and base releases and choose your preferred target PAN-OS release. Preferred releases offer the latest and the most advanced features and ensure stability and performance. When there are no preferred releases available, the corresponding base version is not displayed. If necessary, you can choose to view either preferred releases or base releases.

    Recommended For You

    © 2024 Palo Alto Networks, Inc. All rights reserved.