User contributions for Jamshad
From Notes_Wiki
- 12:12, 1 September 2025 diff hist +8 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Enforcing Multi-Factor Authentication for SSL VPN Access current
- 12:12, 1 September 2025 diff hist −134 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Enforcing Multi-Factor Authentication for SSL VPN Access
- 12:03, 1 September 2025 diff hist +2,520 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 06:24, 1 September 2025 diff hist +244 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Configuring DNAT (Destination NAT) for Inbound Traffic on Palo Alto Firewalls
- 06:22, 1 September 2025 diff hist +253 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Enforce a 1-hour lockout period after login attempt threshold is reached
- 06:20, 1 September 2025 diff hist +310 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Configuring Security and User Policies on Palo Alto Firewalls
- 06:18, 1 September 2025 diff hist +2,104 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 07:17, 30 August 2025 diff hist +91 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 07:13, 30 August 2025 diff hist +63 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Configuring Security and User Policies on Palo Alto Firewalls
- 07:10, 30 August 2025 diff hist +69 Best Practices for Palo Alto Firewall Implementation and CIS Hardening →Configuring DNAT (Destination NAT) for Inbound Traffic on Palo Alto Firewalls
- 07:06, 30 August 2025 diff hist +528 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 05:48, 30 August 2025 diff hist +2,175 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 05:41, 30 August 2025 diff hist +15,058 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 12:59, 29 August 2025 diff hist −2 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 12:59, 29 August 2025 diff hist +2,791 Best Practices for Palo Alto Firewall Implementation and CIS Hardening
- 12:52, 29 August 2025 diff hist +384 N Best Practices for Palo Alto Firewall Implementation and CIS Hardening Created page with " ==Introduction== In today’s complex cybersecurity landscape, the firewall remains the cornerstone of enterprise network defense. Whether deploying a new Palo Alto Networks (PAN) firewall or securing an existing one, a well-architected configuration that aligns with industry-standard hardening practices is vital to minimizing risk, enhancing visibility, and maintaining control."
- 12:52, 29 August 2025 diff hist +77 Paloalto firewall current
- 07:13, 18 August 2025 diff hist −7 Deploying Forti-SDWAN Using FortiManager →Step 1: Add and Authorize FortiGate Devices in FortiManager current
- 07:12, 18 August 2025 diff hist +4,538 N Deploying Forti-SDWAN Using FortiManager Created page with "Home > Enterprise security devices or applications > Fortigate firewall > Deploying Forti-SDWAN Using FortiManager ==Overview== Forti-SDWAN allows multiple WAN interfaces to be used intelligently and dynamically, improving performance and reliability. FortiManager serves as the centralized management platform for FortiGate devices, making it ideal for deploying and managing SD-WAN configurations at scale. ==Step 1: Add and Authorize FortiGate..."
- 07:00, 18 August 2025 diff hist +46 Fortigate firewall current
- 05:12, 4 August 2025 diff hist +368 Steps to Configure VPN Bad Login Attempt Limit to 10 per Hour on Palo Alto Firewall current
- 05:10, 4 August 2025 diff hist +2,800 N Steps to Configure VPN Bad Login Attempt Limit to 10 per Hour on Palo Alto Firewall Created page with " ==Overview== Limiting the number of failed VPN login attempts is a critical step in defending against brute-force attacks targeting remote access services such as GlobalProtect VPN. Palo Alto Networks firewalls support a built-in mechanism to detect and block excessive authentication failures using Vulnerability Protection Profiles. By customizing these profiles, administrators can enforce a stricter limit—for example, capping failed login attempts to 10 per hour per..."
- 05:09, 4 August 2025 diff hist +89 Paloalto firewall
- 12:35, 1 August 2025 diff hist +2 Steps for Creating a New Voucher for Guest SSID current
- 12:34, 1 August 2025 diff hist +294 Steps for Creating a New Voucher for Guest SSID
- 12:32, 1 August 2025 diff hist +2,486 N Steps for Creating a New Voucher for Guest SSID Created page with "==Overview== Voucher-based authentication is a secure and flexible method of providing temporary Wi-Fi access to guests without compromising your main network credentials. Each voucher is a unique code with defined limitations such as usage time, device count, or bandwidth. When redeemed, it grants temporary access to the Guest SSID. This method: #Enhances network security by isolating guest traffic from internal devices #Simplifies administration through centralized c..."
- 11:52, 1 August 2025 diff hist +258 N Wi-Fi controller Created page with "Home > Enterprise security devices or applications > Wi-Fi controller *Steps for Creating a New Voucher for Guest SSID Home > Enterprise security devices or applications > Wi-Fi controller" current
- 11:50, 1 August 2025 diff hist +22 Enterprise security devices or applications current
- 06:32, 1 August 2025 diff hist −290 Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall →Apply the CA Certificate to SSL Forward Proxy current
- 05:40, 1 August 2025 diff hist +429 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall →Step 4: Create Decryption Profile current
- 05:34, 1 August 2025 diff hist 0 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall
- 11:57, 31 July 2025 diff hist −132 Fortinet firewall CIS Hardening →Ensure Admin Accounts Have Correct Profiles Assigned (Manual) current
- 11:57, 31 July 2025 diff hist +9 Fortinet firewall CIS Hardening →Ensure CDN is enabled for improved GUI performance (Manual)
- 11:56, 31 July 2025 diff hist +9 Fortinet firewall CIS Hardening →Ensure management GUI listens on secure TLS version (Manual)
- 05:06, 30 July 2025 diff hist +2,799 N QoS Configuration for VoIP and Backup Traffic in Palo Alto Firewall Created page with "Home > Enterprise security devices or applications > Paloalto firewall > QoS Configuration for VoIP and Backup Traffic in Palo Alto Firewall ==Overview== Prioritizing real-time traffic such as VoIP is essential to maintain call quality and performance. At the same time, it is important to ensure that bandwidth-intensive operations like data backups do not saturate the network link and impact critical services. This configuration ensures: #Vo..." current
- 04:55, 30 July 2025 diff hist +73 Paloalto firewall
- 13:00, 29 July 2025 diff hist +45 Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall →Configuration Steps
- 12:09, 29 July 2025 diff hist +48 Steps to Configure U-NAT in Palo Alto (When Source and Destination Zones Are Different) current
- 12:08, 29 July 2025 diff hist +48 Steps to Configure U-NAT in Palo Alto (When Source and Destination Zones Are the Same) current
- 12:07, 29 July 2025 diff hist +48 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall
- 12:06, 29 July 2025 diff hist +50 Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall
- 12:05, 29 July 2025 diff hist +219 Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall
- 12:03, 29 July 2025 diff hist −21 Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall
- 11:42, 29 July 2025 diff hist +3,959 N Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall Created page with " Steps to Configure SSL Forward Proxy on Palo Alto Networks Firewall ==Objective== This article provides step-by-step instructions on how to configure SSL Forward Proxy on Palo Alto Networks next-generation firewalls. SSL Forward Proxy allows the firewall to decrypt, inspect, and control outbound SSL/TLS traffic initiated by internal users to the internet. ==Prerequisites== #A self-signed or internal CA certificate (or a subordinate CA from enterprise PKI) installed o..."
- 11:41, 29 July 2025 diff hist +73 Paloalto firewall
- 11:21, 29 July 2025 diff hist −69 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall
- 11:20, 29 July 2025 diff hist +288 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall
- 11:17, 29 July 2025 diff hist +24 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall →Step 1: Verify the Server Certificate Chain
- 11:17, 29 July 2025 diff hist +26 SSL Inbound Inspection Configuration on Palo Alto Networks Firewall →Step 1: Verify the Server Certificate Chain
- 11:16, 29 July 2025 diff hist +5,680 N SSL Inbound Inspection Configuration on Palo Alto Networks Firewall Created page with "SSL Inbound Inspection Configuration on Palo Alto Networks Firewall ==Introduction== SSL Inbound Inspection is a feature on Palo Alto Networks firewalls that enables decryption and inspection of encrypted traffic destined for internal servers. This is crucial for detecting threats hidden in SSL/TLS traffic that would otherwise bypass inspection. This article outlines a step-by-step process to configure SSL Inbound Inspection when hosting services behind NAT and using p..."