How does the Palo Alto Networks Next-Generation Firewall prevent threats?
The Palo Alto Networks Next-Generation Firewall protects and defends your network from commodity threats and advanced persistent threats (APTs). The firewall’s multi-pronged detection mechanisms include a signature-based (IPS/Command and Control/Antivirus) approach, heuristics-based (bot detection) approach, sandbox-based (WildFire) approach, and Layer 7 protocol analysis-based (App-ID) approach.
Fantastic! Where can I read more about threat prevention?
Here are some resources from our 6.1 documentation to get you started:
- Set Up Security Profiles and Policies
- Prevent Brute Force Attacks
- Best Practices for Securing Your Network from Layer 4 and Layer 7 Evasions
- Enable Passive DNS Collection for Improved Threat Intelligence
- Use DNS Queries to Identify Infected Hosts on the Network
- Content Delivery Network Infrastructure for Dynamic Updates
- Creating Custom Threat Signatures
- Threat Prevention Deployment
- Understanding DoS Protection
To view a list of Threats and Applications that Palo Alto Networks products can identify, use the following links:
- Applipedia—Provides details on the applications that Palo Alto Networks can identify.
- Threat Vault—Lists threats that Palo Alto Networks products can identify. You can search by Vulnerability, Spyware, or Virus. Click the Details icon next to the ID number for more information about a threat.