Network technologies and trends

Dec 31 2015   5:20AM GMT

What is Palo Alto Security Policy –  Intrazone rule ?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Tags:
Business
DMZ
firewall
Palo Alto Networks
Security policy

When comes to Palo Alto Networks Firewalls, they work on the concept of zones not the security levels. They are no different when compared to other leading Firewall vendors. While designing the Network one must focus on number of zones the business is looking for and what kind of scalability the business is looking for?  As Palo Alto Network Firewalls security zones are platform dependent and there is a limit as well.

Coming back to security policy , its always applied to a zone not to an interface so one can decide what kind of zones need to be created again this completely relies on the Organisational needs.

By default Palo Alto Firewall with a PAN-OS of  6.1 or above  offers there security Policy rules type

  • Intrazone
  • Interzone
  • Universal (default)

PA- Security rules

Intrazone Rules are basically used to allow the traffic within same zones , for example you have two zones name DMZ1 and DMZ2 , using an Intrazone rule traffic from DMZ1 is forwarded to DMZ1 not to DMZ2.

PA- Security rules-2

Intrazone rules mathes only the traffic within the specified source zone not between them , one cannot specify the destination zone  for Intrazone rules.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: