Palo Alto Next Generation Firewall - Rulesets on UW-Madison Wireless and WiscVPN networks
This document summarizes the rules in place on Palo Alto Next Generation network firewalls for the UW-Madison Wireless and WiscVPN networks.
Palo Alto Application Ruleset
More information about these categories can be found at https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5hCAC
The Antivirus feature of the Palo Alto protects against files containing viruses, worms, and trojan downloads. This is protection is in place for the following protocols; FTP, HTTP and SMB.
Anti-Spyware feature of the Palo Alto blocks spyware on compromised hosts from trying to connect to command-and-control (C2) servers.
Vulnerability Protection feature of the Palo Alto blocks malicious network traffic which his trying to exploit system flaws or gain unauthorized access to systems, e.g. SQL injection, buffer overflows, etc.
You can also contact the DoIT Help Desk to report possible blocking issues with the campus Wireless and WiscVPN ruleset by calling 608-264-HELP or by sending an email to firstname.lastname@example.org (monitored during business hours).