Focus

Content Inspection Features

Table of Contents

Filter

Expand All | Collapse All

Next-Generation Firewall Docs

Getting Started
Administration
Version
- Cloud Management of NGFWs
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
- PAN-OS 9.1 (EoL)
Networking
Version
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
Incidents & Alerts
Release Notes
Version
- Cloud Management and AIOps for NGFW
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1
- PAN-OS 11.2
- PAN-OS 8.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 9.1 (EoL)

Features Introduced in PAN-OS 10.2

URL Filtering Features

Content Inspection Features

Explore new content inspection features introduced in PAN-OS ^® 10.2.

New Content Inspection Feature	Description
Advanced Threat Prevention Subscription	Palo Alto Networks Advanced Threat Prevention subscription—a new flagship intrusion prevention service—detects and prevents the latest advanced threats from infiltrating your network by leveraging deep learning models trained on high fidelity threat intelligence gathered by Palo Alto Networks. This inline cloud-based threat detection and prevention engine defends your network from evasive and unknown command-and-control (C2) threats by inspecting all network traffic. Advanced Threat Prevention includes all of the existing capabilities found in Threat Prevention, including a proven signature-based threat prevention solution to defend against known exploits, command-and-control, and commodity malware, and expands on that foundation with an extensible cloud architecture, providing scalable threat detection mechanisms to keep your network protections up to date without sapping firewall resources or relying on regular update packages.
Domain Fronting Detection	Firewalls now have a unique threat ID signature to identify and block domain fronting, also known as SNI spoofing, through your Anti-Spyware security profile as a spyware signature. This allows you to protect your network from malicious attackers using a crafted packet to indicate a fake website in the SNI while surreptitiously connecting to a different website via the HTTP Host Header — a possible vector for the distribution of malware.

New Content Inspection Feature

Description

Advanced Threat Prevention Subscription

Palo Alto Networks Advanced Threat Prevention subscription—a new flagship intrusion prevention service—detects and prevents the latest advanced threats from infiltrating your network by leveraging deep learning models trained on high fidelity threat intelligence gathered by Palo Alto Networks. This inline cloud-based threat detection and prevention engine defends your network from evasive and unknown command-and-control (C2) threats by inspecting all network traffic.

Advanced Threat Prevention includes all of the existing capabilities found in Threat Prevention, including a proven signature-based threat prevention solution to defend against known exploits, command-and-control, and commodity malware, and expands on that foundation with an extensible cloud architecture, providing scalable threat detection mechanisms to keep your network protections up to date without sapping firewall resources or relying on regular update packages.

Domain Fronting Detection

Firewalls now have a unique threat ID signature to identify and block domain fronting, also known as SNI spoofing, through your Anti-Spyware security profile as a spyware signature. This allows you to protect your network from malicious attackers using a crafted packet to indicate a fake website in the SNI while surreptitiously connecting to a different website via the HTTP Host Header — a possible vector for the distribution of malware.

Features Introduced in PAN-OS 10.2

URL Filtering Features

Next-Generation Firewall Docs

Content Inspection Features

Next-Generation Firewall Docs

Content Inspection Features

Activation & Onboarding

Next-Generation Firewalls

Cloud-Delivered Security Services

Network Security

Visibility & Monitoring

Best Practices

Experts Corner