Configure Advanced Threat Prevention

Table of Contents

Configure Advanced Threat Prevention

Learn about advanced threat prevention, an intrusion prevention system (IPS).

Where Can I Use This?	What Do I Need?
Cloud NGFW for Azure	Cloud NGFW subscription Palo Alto Networks Customer Support Portal account Azure Marketplace subscription

Use Panorama to Setup Advanced Threat Prevention

Advanced Threat Prevention (similar to other Palo Alto Networks security services) is administered through security profiles, which in turn is dependent on the configuration of network enforcement policies as defined through security policy rules.

You use the Cloud NGFW for Azure to enable Advanced Threat Prevention for the rulestack, however, you must use Panorama to configure the policies that comprise the security service.

To configure Advanced URL Filtering policy rules using Panorama:

Login to Panorama.
Check that you have the appropriate license subscription for Advanced URL Filtering. In Panorama, select Device > Licenses. Verify that the license expiration date is in the future.
Set up Advanced Threat Prevention using Panorama.
Commit your changes.

Palo Alto Networks provides several options to monitor activity processed by the Advanced Threat Prevention security service. See Monitor Advanced Threat Prevention for more information.

Use XFF IP Address Values in Policy

Configure WildFire Protection

Cloud NGFW for Azure Docs

Configure Advanced Threat Prevention

Cloud NGFW for Azure Docs

Configure Advanced Threat Prevention

Use Panorama to Setup Advanced Threat Prevention

Activation & Onboarding

Next-Generation Firewalls

SASE

Cloud-Delivered Security Services

Network Security

Visibility & Monitoring

Best Practices

Experts Corner