فهرست مطالب

• Contents
• Preface
• Chapter: Understanding the Core Technologies
• Technical requirements
• Understanding the zone-based firewall
• Understanding App-ID and Content-ID
• The management and data plane
• Authenticating and authorizing users with User-ID
• Summary
• Chapter: Setting Up a New Device
• Technical requirements
• Gaining access to the user interface
• Adding licenses and setting up dynamic updates
• Upgrading the firewall
• Hardening the management interface
• Understanding the interface types
• Summary
• Chapter: Building Strong Policies
• Technical requirements
• Understanding and preparing security profiles
• Understanding and building security rules
• Creating NAT rules
• Summary
• Chapter: Taking Control of Sessions
• Technical requirements
• Controlling the bandwidth with quality-of-service policies
• Leveraging SSL decryption to look inside encrypted sessions
• Redirecting sessions over different paths using policy-based forwarding
• Summary
• Chapter: Services and Operational Modes
• Technical requirements
• Applying a DHCP client and DHCP server
• Configuring a DNS proxy
• Setting up High Availability
• Enabling virtual systems
• Managing certificates
• Summary
• Chapter: Identifying Users and Controlling Access
• Technical requirements
• User-ID basics
• Configuring group mapping
• Setting up a captive portal
• Using an API for User-ID
• User credential detection
• Summary
• Chapter: Managing Firewalls through Panorama
• Technical requirements
• Setting up Panorama
• Device groups
• Setting up templates and template stacks
• Panorama management
• Summary
• Chapter: Upgrading Firewalls and Panorama
• Technical requirements
• Documenting the key aspects
• Preparing for the upgrade
• The upgrade process
• The rollback procedure
• The downgrade procedure
• Special case for upgrading older hardware
• Summary
• Chapter: Logging and Reporting
• Technical requirements
• Log storage
• Configuring log collectors and log collector groups
• Cortex Data Lake logging service
• External logging
• Configuring log forwarding
• Reporting
• The Application Command Center
• Filtering logs
• Summary
• Chapter: Virtual Private Networks
• Technical requirements
• Setting up the VPN
• Summary
• Chapter: Advanced Protection
• Technical requirements
• Custom applications and threats
• Zone protection and DoS protection
• Summary
• Chapter: Troubleshooting Common Session Issues
• Technical requirements
• Using the tools at our disposal
• Interpreting session details
• Using the troubleshooting tool
• Using maintenance mode to resolve and recover from system issues
• Summary
• Chapter: A Deep Dive into Troubleshooting
• Technical requirements
• Understanding global counters
• Analyzing session flows
• Debugging processes
• CLI troubleshooting commands cheat sheet
• Summary
• Chapter: Cloud-Based Firewall Deployment
• Technical requirements
• Licensing a cloud firewall
• Deploying a firewall in Azure from the Marketplace
• Bootstrapping a firewall
• Putting the firewall in-line
• Summary
• Chapter: Supporting Tools
• Technical requirements
• Integrating Palo Alto Networks with Splunk
• Monitoring with Pan(w)achrome
• Threat intelligence with MineMeld
• Exploring the API
• Summary
• Other Books You May Enjoy
• Index