Introduction to Palo Alto Networks URL Filtering
#Paloaltonetworks #URL #filtering #Firewalls #networking #networkengineers #networksbaseline #security #NGFW
Twitter > https://lnkd.in/djzxqPK
Instagram>> https://lnkd.in/dCzNETg
https://www.thenetworkdna.com/2020/01/introduction-to-palo-alto-networks-url.html

Introduction to Palo Alto Networks URL Filtering
#Paloaltonetworks #URL #filtering #Firewalls #networking #networkengineers #networksbaseline #security #NGFW
Twitter > https://lnkd.in/djzxqPK
Instagram>> https://lnkd.in/dCzNETg
https://www.thenetworkdna.com/2020/01/introduction-to-palo-alto-networks-url.html

Firewalls can be divided into:
1. Stateful
1.1 Packet Filtering Firewall

2. Stateless
2.1 Packet Filtering Firewall/Routers
2.2 Circuit-level gateway Firewall/Proxy Servers
2.3 Application-level gateway

3. Next Generation Firewall

Depending on how vendors deliver their #firewall, firewalls can be of 3 types:

1. Hardware FW
Runs on #network hardware

2. Software FW
Runs on #host computers

3. Cloud FW
Provides Firewall-as-a-Service (FaaS)

Brief Details:

1. Stateful
Uses Stateful inspection #technology, inspects inside packets, examines+catalogs patterns of its behavior, remembers this behaviour for future, so needs more memory

1.1 Stateful Packet filtering FW
Often a software Packet #filtering firewall acts like #stateful.
🛡️ #Protocol that implement this FW: TCP
🛡️ List of stateful FW:
🔸#windows Defender Firewall (#software)
🔸Palo Alto Networks Firewall (Software/Hardware)
🔸#fortinet's Fortigate NGFW (Software/Hardware)
🔸#cisco ASA (Hardware)
🔸#azure Cloud-native firewall (Cloud)
🔸#google #cloud Firewall (GCP)
🔸#aws Network Firewall (stateless + stateful) (Hardware/Software)
🔸#linux netfilter/iptables (Software)

2. Stateless FW / Router
Uses data packet's source, destination etc to find if the #data presents threat or not, uses ACL, doesn't look what's inside the packet (doesn't remember anything, so less memory & is faster)
🛡️ Protocols that implement this FW: DNS, UDP, HTTP
🛡️ List of Stateless FW:
🔸Any router can be operated as stateless firewall by defining an ACL

2.1 Circuit-level gateway / Proxy Server
Also a transparent proxy FW or Proxy Server, works as stateless, works at the transport+session layers, examines TCP handshake information found in #TCP/UDP packet headers that is sent between computers to verify that these exchange of packets are sequential, logical & if follows some legitimate rules. Do not inspect inside the packets.
🛡️ Protocols that implement this FW: SOCKS, SOCKS5
🛡️ List of VPNs who uses Socks5:
🔸Oxylabs
🔸Bright Data
🔸Rayobytes
🔸Smartproxy

2.2 Application-level gateway FW
A stateless firewall, also an Application-level proxy, sits between original server & external user, controls traffic, synchronization of information, resource allocation, software response control, does address & port translation.
🛡️ Protocols that implement this FW: SIP, FTP, Telnet, RTSP
🛡️ List of Application-level gateway FW:
🔸Azure Web Application Firewall (WAF) 
🔸AWS WAF
🔸Cloudflare Spectrum
🔸#Nginx
🔸HAProxy
🔸Cloudflare WAF
🔸F5 BIG-IP Advanced WAF

3. Next-generation FW (More capable than stateful)
NGFWs has advanced functions including application awareness, Integrated intrusion prevention systems, identity awareness, bridged+routed modes, threat #intelligence.
🛡️ List of #ngfw:
🔸Fortinet FortiGate (7000 series) (Hardware/Software)
🔸Cisco FirePOWER Series (Hardware)
🔸Palo Alto Networks PA Series (Hardware)
🔸Juniper Networks SRX Series (Hardware)
🔸SonicWall NGFW TZ Series (Hardware)

HIRING: Network Security Engineer / London, United Kingdom https://infosec-jobs.com/J19767/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #London #UnitedKingdom #Automation #AWS #Cloud #DevOps #Firewalls #Networksecurity #NGFW #VPN