Objects > Security Profiles > Data Filtering
Data filtering enables the firewall to detect sensitive information—such as credit card or social security numbers or internal corporate documents—and prevent this data from leaving a secure network. Before you enable data filtering, select Objects > Custom Objects > Data Patterns to define the type of data you want to filter (such as social security numbers or document titles that contain the word “confidential”). You can add several data pattern objects to a single Data Filtering profile and, when attached to a Security policy rule, the firewall scans allowed traffic for each data pattern and blocks matching traffic based on the data filtering profile settings.
Data Filtering Profile Settings
Enter a profile name (up to 31 characters). This name appears in the list of log forwarding profiles when defining security policies. The name is case-sensitive and must be unique. Use only letters, numbers, spaces, hyphens, and underscores.
Enter a description for the profile (up to 255 characters).
Shared (Panorama only)
Select this option if you want the profile to be available to:
Disable override (Panorama only)
Select this option to prevent administrators from overriding the settings of this Data Filtering profile in device groups that inherit the profile. This selection is cleared by default, which means administrators can override the settings for any device group that inherits the profile.
Select this option to automatically collect the data that is blocked by the filter.
Add an existing data pattern to use for filtering or select New to configure a new data pattern object (Objects > Custom Objects > Data Patterns).
Specify the applications to include in the filtering rule:
Specify the file types to include in the filtering rule:
Specify whether to apply the filter in the upload direction, download direction, or both.
Specify the number of times the data pattern must be detected in a file to trigger an alert.
Block files that contain at least this many instances of the data pattern.
Define the log severity recorded for events that match this data filtering profile rule.
Set Up Data Filtering
Set Up Data Filtering Use Data Filtering Profiles to prevent sensitive, confidential, and proprietary information from leaving your network. Predefined patterns, built-in settings, and customizable ...
Data Pattern Settings
Data Pattern Settings Select Objects Custom Objects Data Patterns to define the categories of sensitive information that you may want to filter. For information on ...
Objects > Security Profile Groups
Objects > Security Profile Groups The firewall supports the ability to create Security Profile groups , which specify sets of Security Profiles that can be ...
Objects > Security Profiles
Objects > Security Profiles Security profiles provide threat protection in Security Policy. Each Security policy rule can include one or more Security Profiles. The following ...
Support for New Predefined Data Filtering Patterns
Support for New Predefined Data Filtering Patterns To enable compliance for standards such as HIPAA, GDPR, Gramm-Leach-Bliley Act, the firewall now supports 19 new predefined ...
Security Profiles While security policy rules enable you to allow or block traffic on your network, security profiles help you define an allow but scan ...
URL Filtering General Settings
URL Filtering General Settings The following table describes the general URL filtering settings. General Settings Description Name Enter a profile name (up to 31 characters). ...
Objects > Security Profiles > File Blocking
Objects > Security Profiles > File Blocking You can attach a File Blocking profile to a Security policy rule ( Policies > Security ) to ...
Overriding or Reverting a Security Policy Rule
Overriding or Reverting a Security Policy Rule The default security rules—interzone-default and intrazone-default—have predefined settings that you can override on a firewall or on Panorama. ...