Create a Security Profile Group
Use the following steps to create a security profile group and add it to a security policy.
- Create a security profile group.If you name the group default, the firewall will automatically attach it to any new rules you create. This is a time saver if you have a preferred set of security profiles that you want to make sure get attached to every new rule.
- Select ObjectsSecurity Profile Groups and Add a new security profile group.
- Give the profile group a descriptive Name, for example, Threats.
- If the firewall is in Multiple Virtual System Mode, enable the profile to be Shared by all virtual systems.
- Add existing profiles to the group.
- Click OK to save the profile group.
- Add a security profile group to a security policy.
- Select PoliciesSecurity and Add or modify a security policy rule.
- Select the Actions tab.
- In the Profile Setting section, select Group for the Profile Type.
- In the Group Profile drop-down, select the group you created (for example, select the best-practice group):
- Click OK to save the policy and Commit your changes.
- Save your changes.Click Commit.
Set Up or Override a Default Security Profile Group
Set Up or Override a Default Security Profile Group Use the following options to set up a default security profile group to be used in ...
Apply Security Policies to the VM-Series Firewall
Apply Security Policies to the VM-Series Firewall Now that you have created the steering rules on Panorama and pushed them to the NSX-V Manager, you ...
Objects > Security Profile Groups
Objects > Security Profile Groups The firewall supports the ability to create Security Profile groups , which specify sets of Security Profiles that can be ...
Use Dynamic Address Groups to Secure Instances Within the VPC
Learn how to configure the VM-Series firewall to monitor VMs in your project’s VPC. ...
Use Device Groups to Push Policy Rules
Use Device Groups to Push Policy Rules The third task in Use Case: Configure Firewalls Using Panorama is to create the device groups to manage ...
Enable Group Mapping
Enable Group Mapping Because the agent or app running on your end-user systems requires the user to successfully authenticate before being granted access to GlobalProtect, ...
Use Case: Secure the EC2 Instances in the AWS Cloud
Use Case: Secure the EC2 Instances in the AWS Cloud In this example, the VPC is deployed in the 10.0.0.0/16 network with two /24 subnets: ...
Use Case: Control Web Access
Use Case: Control Web Access When using URL filtering to control user website access, there may be instances where granular control is required for a ...
Use Case: Use Dynamic Address Groups to Secure New EC2 Instances within the VPC
Use Case: Use Dynamic Address Groups to Secure New EC2 Instances within the VPC In a dynamic environment such as the AWS-VPC where you launch ...