Data Pattern Settings
Select ObjectsCustom ObjectsData Patterns to define the categories of sensitive information that you may want to filter. For information on defining data filtering profiles, select Objects > Security Profiles > Data Filtering.
You can create three types of data patterns for the firewall to use when scanning for sensitive information:
- Predefined—Use the predefined data patterns to scan files for social security and credit card numbers.
- Regular Expression—Create custom data patterns using regular expressions.
- File Properties—Scan files for specific file properties and values.
Data Pattern Settings
Enter the data pattern name (up to 31 characters). The name case-sensitive and must be unique. Use only letters, numbers, spaces, hyphens, and underscores.
Enter a description for the data pattern (up to 255 characters).
Select this option if you want the data pattern to be available to:
Disable override (Panorama only)
Select this option to prevent administrators from overriding the settings of this data pattern object in device groups that inherit the object. This selection is cleared by default, which means administrators can override the settings for any device group that inherits the object.
Select the type of data pattern you want to create:
Palo Alto Networks provides predefined data patterns to scan for certain types of information in files, for example, for credit card numbers or social security numbers. To configure data filtering based on a predefined pattern, Add a pattern and select the following:
Add a custom data pattern. Give the pattern a descriptive Name, set the File Type you want to scan for the data pattern, and enter the regular expression that defines the Data Pattern.
For regular expression data pattern syntax details and examples, see:
Build a data pattern to scan for file properties and the associated values. For example, Add a data pattern to filter for Microsoft Word documents and PDFs where the document title includes the words “sensitive”, “internal”, or “confidential”.
First Look at New and Updated Data Filtering Options
First Look at New and Updated Data Filtering Options In previous release versions, a single data pattern object could contain different types of data patterns, ...
Set Up Data Filtering
Set Up Data Filtering Use Data Filtering Profiles to prevent sensitive, confidential, and proprietary information from leaving your network. Predefined patterns, built-in settings, and customizable ...
Data Filtering Support for Data Loss Prevention (DLP) Solutions
Data Filtering Support for Data Loss Prevention (DLP) Solutions Data filtering is enhanced to work with third-party, endpoint DLP solutions that populate file properties to ...
Align Data Filtering with a DLP Solution
Align Data Filtering with a DLP Solution If you are using a DLP solution to add file properties to documents in order to mark those ...
Objects > Custom Objects > Data Patterns
Objects > Custom Objects > Data Patterns The following topics describe data patterns. What are you looking for? See: Create a data pattern. Data Pattern ...
Objects > Security Profiles > Data Filtering
Objects > Security Profiles > Data Filtering Data filtering enables the firewall to detect sensitive information—such as credit card or social security numbers or internal ...
Create a Custom Application
Create a Custom Application To safely enable applications you must classify all traffic, across all ports, all the time. With App-ID, the only applications that ...
Security Profiles While security policy rules enable you to allow or block traffic on your network, security profiles help you define an allow but scan ...
Syntax for Regular Expression Data Patterns
Syntax for Regular Expression Data Patterns When you create a regular expression data pattern, the following general requirements apply: The pattern must have a string ...