Data Pattern Settings
Select ObjectsCustom ObjectsData Patterns to define the categories of sensitive information that you may want to filter. For information on defining data filtering profiles, select Objects > Security Profiles > Data Filtering.
You can create three types of data patterns for the firewall to use when scanning for sensitive information:
- Predefined—Use the predefined data patterns to scan files for social security and credit card numbers.
- Regular Expression—Create custom data patterns using regular expressions.
- File Properties—Scan files for specific file properties and values.
Data Pattern Settings
Enter the data pattern name (up to 31 characters). The name case-sensitive and must be unique. Use only letters, numbers, spaces, hyphens, and underscores.
Enter a description for the data pattern (up to 255 characters).
Select this option if you want the data pattern to be available to:
Disable override (Panorama only)
Select this option to prevent administrators from overriding the settings of this data pattern object in device groups that inherit the object. This selection is cleared by default, which means administrators can override the settings for any device group that inherits the object.
Select the type of data pattern you want to create:
Palo Alto Networks provides predefined data patterns to scan for certain types of information in files, for example, for credit card numbers or social security numbers. To configure data filtering based on a predefined pattern, Add a pattern and select the following:
Add a custom data pattern. Give the pattern a descriptive Name, set the File Type you want to scan for the data pattern, and enter the regular expression that defines the Data Pattern.
For regular expression data pattern syntax details and examples, see:
Build a data pattern to scan for file properties and the associated values. For example, Add a data pattern to filter for Microsoft Word documents and PDFs where the document title includes the words “sensitive”, “internal”, or “confidential”.
Set Up Data Filtering
Set Up Data Filtering Use Data Filtering Profiles to prevent sensitive, confidential, and proprietary information from leaving your network. Predefined patterns, built-in settings, and customizable ...
Objects > Custom Objects > Data Patterns
Objects > Custom Objects > Data Patterns The following topics describe data patterns. What are you looking for? See: Create a data pattern. Data Pattern ...
Support for New Predefined Data Filtering Patterns
Support for New Predefined Data Filtering Patterns To enable compliance for standards such as HIPAA, GDPR, Gramm-Leach-Bliley Act, the firewall now supports 19 new predefined ...
Objects > Security Profiles > Data Filtering
Objects > Security Profiles > Data Filtering Data filtering enables the firewall to detect sensitive information—such as credit card or social security numbers or internal ...
Create a Custom Application
Create a Custom Application To safely enable applications you must classify all traffic, across all ports, all the time. With App-ID, the only applications that ...
Syntax for Regular Expression Data Patterns
Syntax for Regular Expression Data Patterns When you create a regular expression data pattern, the following general requirements apply: The pattern must have a string ...
Security Profiles While security policy rules enable you to allow or block traffic on your network, security profiles help you define an allow but scan ...
Monitor > Automated Correlation Engine > Correlation Object...
Monitor > Automated Correlation Engine > Correlation Objects To counter the advances in exploits and malware distribution methods, correlation objects extend the signature-based malware detection ...
Defining Applications Select Objects Applications to Add a new custom application for the firewall to evaluate when applying policies. New Application Settings Description Configuration Tab ...