Author Archives: Glenn

About Glenn

Pre-Sales Engineer for Palo Alto Networks in Norway. Always looking for new ways to secure your organization!

Built-in Actions

With the release of PanOS 8.0, a cool feature called Built-in actions was introduced. It’s a feature that can automate certain processes in PanOS, and I will in this post showcase one of the uses. The problem: I am hosting this … Continue reading

Posted in automation, PanOs, threat, Uncategorized | Tagged , , , | Leave a comment

Log-links – Easy, fast and usable!

If you work with Palo Alto Networks firewalls, then this view is not new to you. If not, then this is how the Detailed Log View from a standard Traffic log-line looks like. It contains a lot of information and … Continue reading

Posted in Uncategorized | 4 Comments

Clientless + RDP = True

This is a post I have been planning on doing for a long time, but as usual, life happens! But now I finally had some free time to finish this off! So today I will show how you get started … Continue reading

Posted in Uncategorized | Leave a comment

Multi Factor Authentication – Get started!

One of the new cool features on PanOS 8.0 is the fact that we now can enforce Multi-Factor Authentication on the Network. Some might think that this is not a big thing but consider the fact that you now can … Continue reading

Posted in Uncategorized | 4 Comments

App-ID for BankID

Short post. But I have created a small App-ID to identify BankID traffic in your network. It’s based on identifying the Certificate used in the transaction. Link: appid_bankid To install: Objects -> Applications -> Import = Done!

Posted in Uncategorized | Leave a comment

How to get a baseline for Flood protection!

Zone protection is a really important profile to configure on your Palo Alto Networks firewall, since you can stop many network based attacks and reconnaissance of your network. Many of the settings are just toggle on/off, but the one that … Continue reading

Posted in Uncategorized | Leave a comment

Did you know? Default is not always bad..

Did you know that you can auto-populate the log-forwarding and security profile by just calling it “default”? I for sure did not know it, and I am paid to know everything there is about PanOS.. so maybe this is new … Continue reading

Posted in Uncategorized | Leave a comment

Block YouTube without SSL-decryption

Let’s say you want to block YouTube, and you started making a rule, it would probably look something like this: Block Youtube and Youtube-base and set it to deny, but this will not work if you are not running SSL-decryption: … Continue reading

Posted in Uncategorized | Leave a comment

Firefox and SSL-decryption

I have worked with SSL-decryption for several years, and one of my biggest issues during that time was the abundance of browsers that people use. We have IE, Chrome, Firefox, Safari, Opera and many more, and they all have their … Continue reading

Posted in Uncategorized | Leave a comment

Reducing the attack surface!

Reducing the attack surface is something I have read, heard and said myself plenty of times. It’s the strategy I belive in when it comes to security in both business and home networks. I am also a visual guy that … Continue reading

Posted in Uncategorized | Leave a comment