Securing Remote Access in Palo Alto Networks

By : Tom Piens aka Piens aka 'reaper'

Securing Remote Access in Palo Alto Networks

By: Tom Piens aka Piens aka 'reaper'

Overview of this book

This book builds on the content found in Mastering Palo Alto Networks, focusing on the different methods of establishing remote connectivity, automating log actions, and protecting against phishing attacks through user credential detection. Complete with step-by-step instructions, practical examples, and troubleshooting tips, you will gain a solid understanding of how to configure and deploy Palo Alto Networks remote access products. As you advance, you will learn how to design, deploy, and troubleshoot large-scale end-to-end user VPNs. Later, you will explore new features and discover how to incorporate them into your environment. By the end of this Palo Alto Networks book, you will have mastered the skills needed to design and configure SASE-compliant remote connectivity and prevent credential theft with credential detection.

Preface

Who this book is for

What this book covers

To get the most out of this book

Code in Action

Download the colour images

Conventions used

Get in touch

Reviews

Section 1: Leveraging the Cloud and Enabling Remote Access

Free Chapter

Chapter 1: Centralizing Logs

Technical requirements

Understanding log forwarding profiles and best practices

Learning about Panorama and log collectors

Forwarding logs to syslog, SMTP, and other options

Exploring log forwarding profiles

Troubleshooting logs and log forwarding

Summary

Chapter 2: Configuring Advanced GlobalProtect Features

Technical requirements

Learning about advanced configuration features

Leveraging quarantine to isolate agents

Practical troubleshooting for GlobalProtect issues

Summary

Chapter 3: Setting up Site-to-Site VPNs and Large-Scale VPNs

Technical requirements

Configuring a site-to-site VPN connection

Summary

Chapter 4: Configuring Prisma Access

Technical requirements

Configuring Prisma Access

Configuring the service infrastructure

Configuring the service connection

Configuring directory sync

Configuring mobile users

Configuring remote networks

Configuring the remote firewalls

Configuring Cortex Data Lake

Summary

Section 2: Tools, Troubleshooting, and Best Practices

Chapter 5: Enabling Features to Improve Your Security Posture

Technical requirements

Hardening the management interface

EDLs

Summary

Chapter 6: Anti-Phishing with User Credential Detection

Technical requirements

Preparing the firewall for credential detection

Using IP user mapping for credential detection

Using group mapping for credential detection

Using domain credential filter

Summary

Chapter 7: Practical Troubleshooting and Best Practices Tools

Technical requirements

Troubleshooting User-ID

Troubleshooting NAT

BPA tool

Summary

Why subscribe?

Other Books You May Enjoy

Packt is searching for authors like you

Leave a review - let other readers know what you think

Customer Reviews

5 star

4 star

3 star

2 star

1 star

Summary

In this chapter, you learned to prevent users from sharing corporate credentials with external parties either by reusing their corporate username and password on a web resource that was not approved for that use (for example, social media) or by phishing attacks that try to get users to submit their credentials on a malicious site.

In the next chapter, we will take a practical approach to troubleshooting and we will review which steps are needed to find the root cause of some common issues.

Securing Remote Access in Palo Alto Networks

By : Tom Piens aka Piens aka 'reaper'

Securing Remote Access in Palo Alto Networks

By: Tom Piens aka Piens aka 'reaper'

Overview of this book

Related Content you might be interested in

Current Title:

Securing Remote Access in Palo Alto Networks

Mastering Palo Alto Networks

OPNsense Beginner to Professional

CCNA Security 210-260 Certification Guide

Summary