Alto MS Series User Manual Page 32
- Page / 108
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
28 Getting Started Guide
Monitor the Firewall Integrate the Firewall into Your Management Network
Config Logs—Enable forwarding of Config logs by specifying a Server Profile in the log settings
configuration. (
Device > Log Settings > Config Logs).
System Logs—Enable forwarding of System logs by specifying a Server Profile in the log settings
configuration. (
Device > Log Settings > System Logs). You must select a Server Profile for each severity level
you want to forward. For a partial list of system log messages and their corresponding severity levels, refer
to the
System Log Reference. The following table summarizes the system log severity levels:
WildFire Logs—Enable forwarding of WildFire logs that contain information about files that are
forwarded from the firewall to WildFire for analysis. You can configure the firewall to forward logs for the
verdict Benign and/or Malicious.
Severity Description
Critical
Serious threats such as those that affect default installations of widely
deployed software, result in root compromise of servers, and the exploit
code is widely available to attackers. The attacker usually does not need
any special authentication credentials or knowledge about the individual
victims and the target does not need to be manipulated into performing
any special functions.
High
Threats that have the ability to become critical but have mitigating factors;
for example, they may be difficult to exploit, do not result in elevated
privileges, or do not have a large victim pool.
Medium
Minor threats in which impact is minimized, such as DoS attacks that do
not compromise the target or exploits that require an attacker to reside on
the same LAN as the victim, affect only non-standard configurations or
obscure applications, or provide very limited access.
Low
Warning-level threats that have very little impact on an organization's
infrastructure. They usually require local or physical system access and
may often result in victim privacy or DoS issues and information leakage.
Data Filtering profile matches are logged as Low.
Informational
Suspicious events that do not pose an immediate threat, but that are
reported to call attention to deeper problems that could possibly exist.
URL Filtering log entries with a benign verdict are logged as
Informational.
Severity Description
Critical
Hardware failures, including HA failover and link failures.
High
Serious issues, including dropped connections with external devices, such
as LDAP and RADIUS servers.
Medium
Mid-level notifications, such as antivirus package upgrades.
Low
Minor severity notifications, such as user password changes.
Informational
Log in/log off, administrator name or password change, any
configuration change, and all other events not covered by the other
severity levels.
- Palo Alto Networks 1
- Contact Information 2
- About this Guide 2
- Table of Contents 3
- Table of Contents 4
- Management Network 5
- Perform Initial Configuration 6
- 4 Getting Started Guide 8
- 6 Getting Started Guide 10
- 8 Getting Started Guide 12
- Activate Firewall Services 13
- Manage Content Updates 15
- 12 Getting Started Guide 16
- Install Software Updates 17
- 14 Getting Started Guide 18
- Add Firewall Administrators 19
- How to Configure 20
- 18 Getting Started Guide 22
- Monitor the Firewall 23
- View Local Log Data 24
- View Reports 25
- Set Up Email Alerts 27
- Set Up SNMP Trap Destinations 27
- 24 Getting Started Guide 28
- Define Syslog Servers 29
- 26 Getting Started Guide 30
- Forward Logs to Panorama 31
- Enable Log Forwarding 31
- 28 Getting Started Guide 32
- Create the Security Perimeter 35
- Security Perimeter Overview 36
- Virtual Wire Deployments 37
- Layer 2 Deployments 37
- Layer 3 Deployments 37
- About Security Policies 38
- Optional 40
- Policy Best Practices 41
- About Policy Objects 41
- About Security Profiles 42
- Getting Started Guide 39 43
- Set Up Interfaces and Zones 44
- 42 Getting Started Guide 46
- Configure NAT Policies 47
- 44 Getting Started Guide 48
- 46 Getting Started Guide 50
- Create Security Rules 52
- 50 Getting Started Guide 54
- Test Your Security Policies 55
- Getting Started Guide 53 57
- Monitor > Logs 57
- Enable WildFire 59
- Scan Traffic for Threats 59
- Control Access to Web Content 59
- Set Up File Blocking 64
- Continue to 66
- 64 Getting Started Guide 68
- For More Information 69
- Configure User Identification 71
- User Identification Overview 72
- About User Mapping 73
- PAN-OS XMLAPI Usage Guide 74
- Enable User Identification 75
- 72 Getting Started Guide 76
- Map IP Addresses to Users 77
- Configure User Mapping 78
- Captive Portal Modes 81
- Configure Captive Portal 82
- 80 Getting Started Guide 84
- 82 Getting Started Guide 86
- Getting Started Guide 85 89
- Monitor > Logs) 89
- Set Up High Availability 91
- HA Overview 92
- Getting Started Guide 89 93
- Failover Triggers 94
- HA Timers 94
- 92 Getting Started Guide 96
- Getting Started Guide 93 97
- Configuration Guidelines 98
- 96 Getting Started Guide 100
- 98 Getting Started Guide 102
- 100 Getting Started Guide 104
- Click Commit 106
- Verify Failover 107
- Getting Started Guide 108
© 2020, manymanuals.com. All rights reserved. | 0.664 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals