0

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Mastering Palo Alto Networks

You're reading from Mastering Palo Alto Networks Build, configure, and deploy network solutions for your infrastructure using features of PAN-OS

Product type Paperback

Published in Jun 2022

Publisher Packt

ISBN-13 9781803241418

Length 636 pages

Edition 2nd Edition

Tools

Palo Alto Networks

Concepts

Networking

Author (1):

Tom Piens Aka 'Reaper'

View More author details

Table of Contents (18) Chapters

Preface

1. Understanding the Core Technologies

2. Setting Up a New Device FREE CHAPTER

3. Building Strong Policies

4. Taking Control of Sessions

5. Services and Operational Modes

6. Identifying Users and Controlling Access

7. Managing Firewalls through Panorama

8. Upgrading Firewalls and Panorama

9. Logging and Reporting

10. Virtual Private Networks

11. Advanced Protection

12. Troubleshooting Common Session Issues

13. A Deep Dive into Troubleshooting

14. Cloud-Based Firewall Deployment

15. Supporting Tools

16. Other Books You May Enjoy

17. Index

Leveraging SSL decryption to look inside encrypted sessions

SSL/TLS and SSH decryption perform a man-in-the-middle attack, but for good instead of evil—an encrypted session is intercepted then, through the use of trusted certificates, the session is deciphered and the payload is made visible for content inspection and App-ID to take a look at. There are three modes of SSL decryption currently available:

SSH proxy
SSL forward proxy
SSL inbound inspection

Let’s look at each of them in detail.

SSH proxy

SSH proxy allows the interception of SSH sessions. The SSH connection will be proxied, meaning that the client connects to the firewall and the firewall establishes a new session to the server. This allows you to control (allow or block) tunneling over the SSH session by setting a security policy for the ssh-tunnel application.

SSL forward proxy

SSL forward proxy is used for all outbound sessions. There are two distinct directions...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (2)

Tom Piens aka Piens aka 'reaper'

Tom Piens aka Piens aka 'reaper'

Tom Piens is a seasoned cybersecurity professional with a distinguished career closely tied to Palo Alto Networks. With over two decades of experience in the field, Tom has played a pivotal role in shaping the digital defense landscape. His journey began as the first international (outside of the continental US) support engineer at Palo Alto Networks, where he rapidly ascended the ranks due to his remarkable aptitude for innovative solutions. Beyond his technical prowess, Tom's passion for knowledge transfer has made him a sought-after mentor. He's been instrumental in cultivating a dynamic learning environment within the Palo Alto Networks LIVE community, fostering a culture of continuous growth and excellence. His innate ability to simplify complex concepts has empowered his colleagues to stay at the forefront of cybersecurity trends.

See other products by Tom Piens aka Piens aka 'reaper'

Tom Piens Aka 'Reaper'

Tom Piens Aka 'Reaper'

Tom Piens is a freelance security consultant with nearly 25 years of experience in network security, specializing in Palo Alto Networks' Strata and Prisma Access products. As the author of multiple technical books, including Mastering Palo Alto Networks, he is passionate about sharing knowledge and helping professionals enhance their skills in firewall configuration and network security. Through a hands-on approach, Tom has helped countless individuals and organizations optimize their security infrastructures.

See other products by Tom Piens Aka 'Reaper'

Personalised recommendations for you

Based on your interests and search pattern

Mastering PowerShell Scripting

Mastering PowerShell Scripting

PowerShell scripts provides a convenient method for automating tasks, using them proficiently can be challenging. This all-inclusive guide begins at the basics and covers advanced concepts, equipping you with tips to become an expert in PowerShell Core 7.3 scripting.

May 2024 27h 32m

Network Automation with Nautobot

Network Automation with Nautobot

This book will help you understand why a network source of truth is needed for long-term network automation success, which will in turn save you hundreds of hours in deploying and integrating Nautobot into network automation.

May 2024 27h 12m

NGINX HTTP Server

NGINX HTTP Server

Explore the power of NGINX with this guide covering an array of essential practical topics, including securing your infrastructure with automatic TLS certificates, placing NGINX in front of your existing applications, and much more.

May 2024 8h 44m

Mastering Azure Virtual Desktop

Mastering Azure Virtual Desktop

This updated edition will help you plan an Azure Virtual Desktop Architecture, implement its infrastructure, and manage its access and security. With content aligned with the exam objectives, it'll help you ace the Microsoft AZ-140 exam.

Jul 2024 23h 56m

Learn Ansible will teach you how to write Ansible Playbooks for deploying simple apps. This updated edition covers the latest Ansible features, helping you confidently implement Ansible in your daily workflows.

May 2024 13h 48m

HashiCorp Terraform Associate (003) Exam Guide

HashiCorp Terraform Associate (003) Exam Guide

This book will help you explore HashiCorp Terraform and prepare for Associate (003) certification, from understanding core concepts to advanced modules. You'll gain hands-on expertise, troubleshoot with confidence, and more.

May 2024 11h 28m

Kubernetes – An Enterprise Guide

Kubernetes – An Enterprise Guide

Navigate the complexities of Kubernetes and fully leverage its capabilities for enterprise applications. This edition dives into advanced deployments, groundbreaking techniques, and insights that will elevate your skills and redefine your expertise.

Aug 2024 22h 44m

Atlassian DevOps Toolchain Cookbook

Atlassian DevOps Toolchain Cookbook

Master setting up a DevOps toolchain using Atlassian tools and Open DevOps as a framework with this recipe-driven guide to automated testing, integration, deployment, observability, and incident management for streamlining development processes.

Jul 2024 16h 48m

AWS Certified Developer Associate Certification and Beyond

AWS Certified Developer Associate Certification and Beyond

This is your guide to passing the challenging AWS Certified Developer – Associate certification exam and setting yourself up for a rewarding career. Through a sample project, it explains how to design, architect, and implement applications on AWS.

Jul 2024 23h 40m

Implementing GitOps with Kubernetes

Implementing GitOps with Kubernetes

This book provides step-by-step tutorials and hands-on examples for effectively implementing GitOps practices in your Kubernetes deployments. You'll learn how to automate, monitor, and secure your infrastructure for efficient application delivery.

Aug 2024 14h 48m