Palo Alto Next Generation Firewall - Rulesets on Morgridge Institute for Research Networks

This document summarizes the rules in place on Palo Alto Next Generation network firewalls for the Morgridge Institute for Research wireless, wired and VPN networks.
Background
In order to reduce the risk of known threats, DiscoverIT implemented network protections using the advanced features of Palo Alto Networks' Next Generation Firewall.

Palo Alto Protections

The WIDMIR Wireless, Eduroam, Guest WiFi and wired networks allows for protection of client devices though the use of Palo Alto's URL filtering security feature.
Web accesses to addresses associated with the following categories will be blocked:
  • Adult Content
  • command-and-control
  • Copyright Infringement
  • Hacking
  • phishing
  • malware
  • Nudity
  • Parked URLs
  • P2P Networks
  • ransomware

NO SSL decryption is enabled so no banking and passwords are decoded.

The web addresses mapped to these categories are updated periodically by Palo Alto.

More information about these categories can be found at https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5hCAC

Support

If a block to a web site has been made during an interactive browsing session, the below message will be returned on the browser:
blockpage
If you believe a web site is incorrectly blocked, you can request that it be re-tested by Palo Alto at https://urlfiltering.paloaltonetworks.com/  The same link can also be used to learn if a web site is currently blocked.

You can also contact the DiscoverIT Help Desk to report possible blocking issues with the wireless and wired rulesets by calling 1 (608) 316-4911 or by sending an email to service@discovery.wisc.edu (monitored during business hours).

See Also


KeywordsPA, palo alto firewall blocked website blocked website blocked   Doc ID135418
OwnerKent C.GroupDiscoverIT
Created2024-02-12 12:29:09Updated2024-04-02 12:47:26
SitesDiscoverIT
Feedback  0   0