PAN-OS Policy Optimizer (beta)

Entry widget that returns the number of unused rules found by PAN-OS policy. optimizer.

Entry widget that returns the number of rules with unused applications found by PAN-OS policy optimizer.

Entry widget that returns the number of port based rules found by PAN-OS policy optimizer.

Port based firewall rules found by PAN-OS Policy Optimizer.

Unused firewall rules found by PAN-OS Policy Optimizer.

Policy Optimizer use-case that will be handled by the Policy Optimizer playbook.

PAN-OS firewall rules with unused applications found by PAN-OS Policy Optimizer.

Automate your AppID Adoption by using this integration together with your Palo Alto Networks Next-Generation Firewall or Panorama.

This playbook helps identify and remove unused rules that do not pass traffic in your environment.

This playbook edits rules with unused applications or rules that are port based, and adds an application to the rule. It is used in PAN-OS - Policy Optimizer playbooks and includes communication tasks to get a rule name and the application to edit from the user.

This playbook is triggered by the Policy Optimizer incident type, and can execute any of the following sub-playbooks:

• Policy Optimizer - Manage Unused Rules
• Policy Optimizer - Manage Rules with Unused Applications
• Policy Optimizer - Manage Port Based Rules

This playbook helps identify and remove unused applications from security policy rules. If you have application-based security policy rules that allow a large number of applications, you can remove unused applications (applications never seen on the rules) from those rules to allow only applications actually seen in the rule’s traffic. This strengthens your security posture by reducing the attack surface.

This playbook migrates port-based rules to application-based allow rules to reduce the attack surface and safely enable applications on your network.

Entry widget that returns the number of unused rules found by PAN-OS policy. optimizer.

Entry widget that returns the number of rules with unused applications found by PAN-OS policy optimizer.

Entry widget that returns the number of port based rules found by PAN-OS policy optimizer.

Policy Optimizer use-case that will be handled by the Policy Optimizer playbook.

Unused firewall rules found by PAN-OS Policy Optimizer.

PAN-OS firewall rules with unused applications found by PAN-OS Policy Optimizer.

Port based firewall rules found by PAN-OS Policy Optimizer.

Automate your AppID Adoption by using this integration together with your Palo Alto Networks Next-Generation Firewall or Panorama.

This playbook edits rules with unused applications or rules that are port based, and adds an application to the rule. It is used in PAN-OS - Policy Optimizer playbooks and includes communication tasks to get a rule name and the application to edit from the user.

This playbook helps identify and remove unused applications from security policy rules. If you have application-based security policy rules that allow a large number of applications, you can remove unused applications (applications never seen on the rules) from those rules to allow only applications actually seen in the rule’s traffic. This strengthens your security posture by reducing the attack surface.

This playbook helps identify and remove unused rules that do not pass traffic in your environment.

This playbook migrates port-based rules to application-based allow rules to reduce the attack surface and safely enable applications on your network.

This playbook is triggered by the Policy Optimizer alert type, and can execute any of the following sub-playbooks:

• Policy Optimizer - Manage Unused Rules
• Policy Optimizer - Manage Rules with Unused Applications
• Policy Optimizer - Manage Port Based Rules