Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
AfterMath
Collaborator

Firewall rules for update palo alto´s firewall content on CP

Hi Guys!

Anyone can advise on how to configure the Check Point firewall rule for palo alto fw update its contents?

Thanks in advance. 

0 Kudos
6 Replies
AfterMath
Collaborator

*Instead of put

PA FW (x.x.x.x) to all internet on service https (tcp.443) accept...!

0 Kudos
G_W_Albrecht
Legend Legend
Legend

You should check for PA FW which connections & ports are needed for updates in the documentation.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
AfterMath
Collaborator

Thanks @G_W_Albrecht 

The question is about the destination (all_internet)

 

1.PNG

So how to permit only PA  on destination for content updates!

0 Kudos
G_W_Albrecht
Legend Legend
Legend

What is PA on destination ? There should be documentation on which sites get accessed for updates, CP has that, too.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
r1der
Advisor

What GW said. PA should have documentation on it.
I'd think it will be something like *.paloaltonetworks.com instead of "all Internet"

the_rock
Legend
Legend

I agree with the guys...Palo Alto should have doc on that.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events