Internet Gateway Best Practice Security Policy
    : Remove the Temporary Rules
    Focus
    Download PDF
    Focus
    1. Home
    2. Best Practices
    3. Internet Gateway Best Practice Security Policy
    4. Best Practice Internet Gateway Security Policy
    5. Remove the Temporary Rules
    Download PDF

    Internet Gateway Best Practice Security Policy

    Remove the Temporary Rules

    Table of Contents

    Remove the Temporary Rules

    After several months of monitoring your initial internet gateway best practice security policy and tuning the rulebase, you should see less and traffic that you want to allow matching the temporary rules. When you no longer see traffic that you want to allow matching these rules, you've achieved your goal of transitioning to a fully application-based Security policy rulebase. You can now remove the temporary rules, including the application block rules for applications that don't have a legitimate use case and for public DNS and SMTP applications because the default interzone-default deny rule automatically blocks that traffic since it matches no explicit allow rules. (Keep the rules that QUIC.)
    1. Select
      Policies
      Security
      .
    2. Select the rule and click
      Delete
      .
      Alternatively,
      Disable
       the rules for a period of time before deleting them. This allows you to
      Enable
       them again if Traffic logs show that traffic you want to allow matches the interzone-default deny rule.
    3. Commit
       the changes.

    Recommended For You

    © 2023 Palo Alto Networks, Inc. All rights reserved.