Tag Archives: Application

Palo Alto Application: First Packets Will Pass!

2018-06-07Design/Policy, Palo Alto NetworksApp-ID, Application, FTP, Next-Generation Firewall, Palo Alto Networks, PolicyJohannes Weber

I am using an almost hidden FTP server in my DMZ behind a Palo Alto Networks firewall. FTP is only allowed from a few static IP addresses, hence no brute-force attacks on my server. Furthermore, I have an “allow ping and traceroute from any to DMZ” policy since ping is no security flaw but really helpful while troubleshooting.

Now, here comes the point: My FTP server logfile showed dozens of connections from many different IP addresses from the Internet. WHAT? For the first moment I was really shocked. Have I accidentally exposed my FTP server to the Internet? Here is what happened:

Continue reading Palo Alto Application: First Packets Will Pass! →

FortiGate Application Traffic Shaping

2016-08-08Bandwidth/Delay, Fortinet, Tutorial/HowtoApplication, Bandwidth, FortiGate, Fortinet, TrafficJohannes Weber

This is a really cool and easy to use feature of the FortiGate firewall: the traffic shaper. Once an application category uses too much traffic, the bandwidth consumption can be decreased with it. Just about three clicks:

Continue reading FortiGate Application Traffic Shaping →

Weberblog.net

IT-Security, Networks, IPv6, VPN, DNSSEC, NTP

Tag Archives: Application

Palo Alto Application: First Packets Will Pass!

FortiGate Application Traffic Shaping