Below is a table of all inbound and outbound communication to and from Panorama or Log Collectors.
If certain ports or protocols are not leveraged, then it is not necessary to allow such traffic. It is generally suggested to allow Panorama or Log Collector communication ports and applications to or from specific IP Address(es) if known and deny all else. This post outlines what are expected protocols and ports for Panorama and Log Collectors.Įxpected Communications from Panorama and Log Collectors
It is important to understand what traffic and protocols are expected to and from Panorama and Log Collectors to ensure proper firewalls rules can be applied in order to provide protection bi-directionally and block unexpected traffic. Learn best practices and recommendations for securing Palo Alto Networks Panorama and Log Collector communications.Īs a general recommendation, management interfaces for Panorama and Log Collectors should not have direct Internet access without a security device such as a Palo Alto Networks firewall inline.
0 kommentar(er)
