Palo Alto Networks now provides support for Advanced cloud-based features (including,
but not limited to Precision AI™ optimized features such as
Advanced WildFire: Inline Cloud Analysis,
Advanced Threat Prevention: Inline Cloud
Analysis,
Inline Deep Learning Analysis for Advanced URL
Filtering; as well as
App-ID Cloud Engine, and
Enterprise DLP) when using an explicit proxy as part of
a customer's network security infrastructure. Previously, access to various
components of advanced security subscriptions required direct internet connectivity,
preventing users from maximizing the feature set of their advanced cloud services
when internet traffic is handled by an explicit proxy server, which could leave them
vulnerable to certain security threats. When
Explicit Proxy Support for Advanced
Services is enabled, the firewall initiates and completes a proxy handshake
and authentication procedures to establish connection to the specified proxy server,
which subsequently forwards traffic to the Palo Alto Networks Advanced cloud service
servers via the proxy.
For more information about enabling explicit proxy support for advanced services,
refer to the configuration documentation for enabling the specific advanced
subscription service.