Book Image

Securing Remote Access in Palo Alto Networks

By : Tom Piens aka Piens aka 'reaper'
Book Image

Securing Remote Access in Palo Alto Networks

By: Tom Piens aka Piens aka 'reaper'

Overview of this book

This book builds on the content found in Mastering Palo Alto Networks, focusing on the different methods of establishing remote connectivity, automating log actions, and protecting against phishing attacks through user credential detection. Complete with step-by-step instructions, practical examples, and troubleshooting tips, you will gain a solid understanding of how to configure and deploy Palo Alto Networks remote access products. As you advance, you will learn how to design, deploy, and troubleshoot large-scale end-to-end user VPNs. Later, you will explore new features and discover how to incorporate them into your environment. By the end of this Palo Alto Networks book, you will have mastered the skills needed to design and configure SASE-compliant remote connectivity and prevent credential theft with credential detection.
Table of Contents (11 chapters)
1
Section 1: Leveraging the Cloud and Enabling Remote Access
6
Section 2: Tools, Troubleshooting, and Best Practices

Configuring Prisma Access

SASE, or Secure Access Service Edge, is a term that was coined by Gartner to describe a cloud-centric approach to network architecture, where secure services and connectivity are delivered directly to the source of a connection rather than a data centre. With Prisma Access, connectivity and security can be taken out of the data centre where, historically, a bulky firewall would provide a focal point of partner VPN tunnels and remote users dialling in to reach resources in the DMZ, while doubling up as the perimeter firewall protecting the office users and server farm. As shown in the following diagram, all connectivity is shifted toward the cloud. The data centre is still represented but could also be a cloud-based service, such as an Azure-based Active Directory and Office 365 environment, while remote users and remote offices connect to a cloud instance that's geographically closest to them rather than the central site. This cuts down on direct connection...