This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
AfterMath
Contributor
‎2022-05-27 12:40 AM

Firewall rules for update palo alto´s firewall content on CP

Hi Guys!

Anyone can advise on how to configure the Check Point firewall rule for palo alto fw update its contents?

Thanks in advance. 

0 Kudos
6 Replies
AfterMath
Contributor
‎2022-05-27 12:59 AM

*Instead of put

PA FW (x.x.x.x) to all internet on service https (tcp.443) accept...!

0 Kudos
G_W_Albrecht
Legend
Legend
‎2022-05-27 01:32 AM

You should check for PA FW which connections & ports are needed for updates in the documentation.

CCSE CCTE SMB Specialist
0 Kudos
AfterMath
Contributor
‎2022-05-27 02:14 AM
In response to G_W_Albrecht

Thanks @G_W_Albrecht 

The question is about the destination (all_internet)

 

1.PNG

So how to permit only PA  on destination for content updates!

0 Kudos
G_W_Albrecht
Legend
Legend
‎2022-05-27 04:30 AM
In response to AfterMath

What is PA on destination ? There should be documentation on which sites get accessed for updates, CP has that, too.

CCSE CCTE SMB Specialist
0 Kudos
r1der
Contributor
‎2022-05-27 04:25 PM
In response to AfterMath

What GW said. PA should have documentation on it.
I'd think it will be something like *.paloaltonetworks.com instead of "all Internet"

the_rock
Champion
Champion
‎2022-05-27 04:45 PM

I agree with the guys...Palo Alto should have doc on that.

0 Kudos