Malware is constantly evolving and it is difficult if not impossible to protect the endpoint using anti-malware signatures (e.g. AV, anti-spyware). Eventually prevention will fail. Therefore quick, accurate methods are needed to detect malware without the use of signatures. By observing common behaviors we can find the presence of malware with high confidence. Such traits often include opening listening ports, creating new services, weakening security settings, adding autostart capability, and more. We conclude by showing a new tool that can look for these pieces of evidence over an entire network in just seconds.

Register here:

Malware is constantly evolving and it is difficult if not impossible to protect the endpoint using anti-malware signatures (e.g. AV, anti-spyware). Eventually prevention will fail. Therefore quick, accurate methods are needed to detect malware without the use of signatures. By observing common behaviors we can find the presence of malware with high confidence. Such traits often include opening listening ports, creating new services, weakening security settings, adding autostart capability, and more. We conclude by showing a new tool that can look for these pieces of evidence over an entire network in just seconds.

Register here:

Unfortunately, the perimeter protection technology routinely deployed in data center environments is not always able to keep up with the developing trends in network use and its associated risks. These traditional firewalls utilize port blocking and IP blocking technology, but fail to provide detailed information regarding network use for more flexible network administration. By examining where user traffic is originating from or being sent to, as well as the application generating the traffic, and the content of the traffic itself, next-generation firewalls provide a robust, flexible, and highly adjustable solution for network perimeter protection.

In a recently published article, Securing Your Datacenter with a Next-Generation Palo Alto Networks Firewall, experienced Internet security specialist Digital Scepter discusses the limited capability of traditional port blocking firewalls to fight the battle against modern network integrity threats. In addition, Digital Scepter outlines the key benefits of choosing a Palo Alto Networks firewall for your data center, including the distinctive, unique features that make Palo Alto Networks firewalls an increasingly popular choice for keeping mission-critical data safe.

Powerful, flexible, and always available – Palo Alto Networks next-generation firewalls

Whatever the nature of the device you are considering adding to your network, there are always certain concerns that arise – and deciding whether to implement a firewall protection device is no different. If you have taken the time to design and establish a network that fundamentally meets your requirements, it can be difficult to make the decision to add a device that could possibly throttle network speed, introduce a single point of failure, or overly complicate your long-term network administration and configuration.

In our most recent article, Digital Scepter provides a clear, concise summary of the ways in which Palo Alto Networks firewall protection maintains multi-gigabit transfers, high redundancy, and consistently accessible administration via dedicated system resources that are made available even during an unexpected traffic spike. Digital Scepter discusses the benefits of these unique firewall features for enterprise data centers and Internet-facing data centers or web hosts alike.

In addition, the article looks at the reasons Palo Alto Networks next-generation firewalls represent the next logical step in the development of perimeter protection – including taking a comprehensive approach to monitoring users, spotting threatening applications, and implementing robust policies to keep your network protected, functional, and productive.

Palo Alto Networks firewall protection from Digital Scepter

Digital Scepter is a specialty provider of the hardware and software solutions that keep networks protected from malware or misuse, accompanied by the expertise and experience required to find appropriate network security solutions. We offer a complete network security service range, from diagnosing your existing network to identify threats, to designing and implementing the protection solutions that can defend your business for the long-term.

As well as being a Palo Alto Networks Platinum Level Partner, Digital Scepter works closely with a wide range of other providers including Zscaler, Tanium, Solutionary, Aruba, and Trend Micro. With our longstanding relationships with many Internet security providers, you can be completely confident that Digital Scepter has unrivalled access to the right security solution for you.

To find out more about Digital Scepter or the Palo Alto Networks next-generation firewall range, visit digitalscepter.com or call 1-888-299-3718 today.

The most obvious solution is to resort to the sneakernet, i.e., physically visiting each individual location and working hands-on with every piece of hardware. In practice, this could mean an administrator traveling the globe to rename some files, or perhaps resorting to mailing unsecure data transfer devices such as CD and DVD storage or USB devices. Neither of these is good for security or good for the workload of the average IT administrator. To help organizations of all sizes avoid sneakernet, Digital Scepter provides the latest in systems management tools: Tanium.

In this article, we discuss sneakernet and the potential impact on an organization if a network is managed using such slow methods. We also explore Tanium and the stunning features that make this software the leading choice in systems management. Finally, the major benefits of choosing Tanium from Digital Scepter are illustrated by some of the most frequently encountered use case examples.

What is the problem with sneakernet?

A term which describes all kinds of physical data transfer methods, sneakernet uses the biggest network in the world: people, moving around. Before modern computers and long before the Internet, this was the only form of network available – data was on paper, or in books, and sent using the good old-fashioned postal service. Despite now having been superseded by far more advanced networks, sneakernet remains a significant tool for transferring large amounts of data over short distances. If, for example, you mailed your friend a package of 20 Blu-Ray discs, the equivalent throughput rate of the data would be far above most other transfer methods.

However, throughput (data transfer speed) alone does not accurately represent the efficiency of a network. What if you wanted to send your friend only a few documents on a USB stick? The process of transferring data would take just as long.

In instances of network monitoring and application security, large files rarely need to be moved around the network. Instead, network administration depends on low latency – common activities such as renaming files or deleting suspected malware may not involve the transfer of large file sizes, but performing these tasks quickly is vitally important.

Resorting to sneakernet for administration and monitoring leaves IT network administrators with hundreds of hours of repetitive tasks, wasting time and money that could be spent on other areas of the network. In addition, if a network administrator must monitor every node on the network and modify settings as necessary, there is a dangerous delay between the identification of a security threat and the rolling out of a solution to every user.

Digital Scepter understands the need for every organization to avoid sneakernet and, wherever possible, to monitor and manage its security from a centralized location.

Avoiding sneakernet with Tanium systems management tools

In order to avoid sneakernet and maintain high efficiency for network monitoring and security monitoring, a network administrator should be able to query information on any hardware device and roll out changes without being forced to manually visit each machine. Tanium is a robust and reliable systems management tool that makes this possible, saving time and effort for IT departments. The software is highly flexible, allowing you to not only investigate how computers are being used, but also to run a command on every single machine in mere moments.

Using Tanium works in three key stages:

1. Identify machines using fast search criteria

Although Tanium can be used to carry out actions on as many as 400,000 computers at once, in most cases, you will want to target a specific subset of your network or check for devices that meet certain criteria. Tanium accepts queries as questions – finding all of the computers that are running Internet Explorer is as simple as asking Tanium: ”Which computers are running Internet Explorer?”

Some other common queries include: “Which services are using more than 10% of the CPU?”; “Which computers have USB drives attached?”; and “What are the Required Microsoft Patches from all computers?” Whatever the nature of your query, Tanium makes it possible to identify all correlating computers at once so that you don’t have to manually investigate every single device on your network.

2. Define Tanium Actions to roll out changes in seconds

Next, just about any task that could be achieved with direct access to your selected computers can be achieved remotely using Tanium’s powerful deployment functionality. By simply entering a command prompt instruction, you can delete, rename, or move files, or modify settings and configurations as necessary. Every computer can follow your instructions in as little as 20 seconds.

3. Set up network monitoring and automated actions for the future

By allowing you to find the right machines to target and then running a range of commands, Tanium could save you hundreds of hours a year. However, you can save even more time by using your queries and previously used commands to automate the process for the future.

Imagine that you need to check which computers need application updates. After running through the process just once, Tanium can automatically check periodically for outdated applications, notify you, and update them as necessary – without any direct administrative input.

Examples of Tanium usage for security monitoring and network security

The implications of powerful systems management software like Tanium extend across all facets of network management. At Digital Scepter, we believe that a low latency, sneakernet-free system like Tanium leads to better standards of security as well as being an essential time-saver for any IT department.

One customer runs a network that spans 17 distinct geographic locations and hundreds of individual machines. In this case, the goal is simple – to rename folders on every machine, bringing them in line with new naming methodologies for the organization. Using sneakernet, the customer would be required to visit each individual machine and run a batch rename from the command prompt. Using Tanium, the customer can automate the entire process, renaming every single folder in seconds.

In another case, a customer is concerned about what would happen if a worm managed to infiltrate the network. Let’s say that the worm is an application named AppX. Eradicating AppX completely would be a two-stage process: identifying all the machines where the worm was present, and then manually deleting the worm on each machine. With sneakernet, this would be a painstaking process, taking time away from other areas of network administration. With Tanium, a simple “What are the computer names of computers running AppX?” query will immediately identify the targets, and one single command line instruction can be rolled out to each machine, instantaneously.

Sneakernet and the distributed nature of modern networks is a bad match. With Tanium, processes that could potentially take hours to complete can be completed in seconds.

Contact Digital Scepter to avoid sneakernet in your organization

With a proven track record in helping organizations streamline their network processes and improve their network security, Digital Scepter understands the best steps for a business to take in order to avoid sneakernet and wasted hours.

We currently offer an end-to-end network monitoring and network security service range, beginning with diagnostic services including an Application Visibility Report and penetration testing. Digital Scepter can help to identify your most pressing needs, brief you fully on the best hardware and software implementations to save you time and money, and source products across next-generation firewalls and other perimeter protection devices. As well as having a close relationship with Tanium, Digital Scepter also works with a number of other leading suppliers, including Palo Alto Networks, Zscaler, Aruba, and Trend Micro.

To find out more about network monitoring and network security services from Digital Scepter, visit digitalscepter.com or call 1-888-299-3718 today.

It can be difficult for organizations to know where to begin when it comes to improving their network security. How do you choose the right kind of perimeter protection solution for your unique business needs? Where should you focus your budget and attention to improve security dramatically, at a cost that makes sense for you? Learning which technology and policies you need to implement on your network is a process that begins with accurately assessing your existing network infrastructure.

At Digital Scepter, we encourage every organization to have a detailed breakdown of their network. Across hardware and software, creating an asset list is the first step in better understanding the security needs of your network, what you are doing to meet these demands, and how you can improve your network to keep your mission-critical or confidential data safe.

Understand your network by creating an asset list

Ask any network administrator, and they will readily admit that modern corporate networks can be incredibly difficult to monitor. More and more hardware devices are being added to networks, and these devices are performing a number of different network functions, sometimes across wide and diverse geographical areas. In the case of devices operated by your end-users, such as employees, software technology advances are growing rapidly, which can make the devices hard to monitor accurately. In addition, with the advent of cutting-edge technologies such as effective cloud storage, the location of your most important data is becoming increasingly distributed over multiple locations.

Creating an asset list is a task that essentially can be divided into three parts – hardware, software, and data.

First, look at your network topography and list every single hardware device you can find. This should include infrastructure devices such as routers, switches, and bridges, as well as every single node including mobile devices that connect to your network externally. Also, be sure to include your existing security devices, such as network firewalls or other perimeter protection devices. Ultimately, if the hardware device is connecting directly to your network by any means, you should list it as part of your asset list.

Next, examine the software that runs on your network. Some of the most commonly used applications will be ones that you have deployed on end-user machines, and listing each of these regularly used tools is relatively simple. You should take the time to understand which applications are being used, and also how they are being used. What do your users actually do with their web browsers? How are they sharing files via email? Digital Scepter’s Application Visibility Report can help you look at the use of specific applications on your network, as well as the content that is being transferred.

Finally, every asset list should cover the most important asset of every network: your data. Modern organizations thrive on their data and it is important to make a list detailing where your data is stored, the type of databases that this information is contained in, and whether the given data is highly confidential, of a personal nature, or contains payment and credit card information. Determining the nature of the data is essential to determine if compliance and regulatory requirements need to be followed (e.g. HIPAA, PCI, Sarbanes-Oxley, Gramm-Leach-Bliley, etc.)

Start now by taking the opportunity to create an asset list for your network. Consolidate your information on hardware, software, and data to fully understand your current security position. If this task seems daunting, let Digital Scepter do this for you! We have the tools such as Tanium that makes asset discovery and tracking easy and quick!

Protect your assets with network security from Digital Scepter

Equipped with your asset list, it should be clearer than ever how crucial it is to implement robust and dependable network security solutions in order to keep your assets safe. The threats to your network are growing increasingly sophisticated – from complex network attacks to new methods for employees to circumvent your acceptable use policies. Does your asset list assure you that your network security can meet the very latest standards?

A boutique specialist in perimeter protection and network security services, Digital Scepter is highly experienced in helping organizations understand the threats that their networks face, and offering the best network protection solutions to fight them. After providing diagnostic services including an Application Visibility Report and penetration testing, Digital Scepter can advise you on the most suitable solution for your needs, and source the equipment you need from leading suppliers including Palo Alto Networks, Zscaler, Tanium, Aruba, and Trend Micro.

To find out more about network security services from Digital Scepter, visit digitalscepter.com or call 1-888-299-3718 today.

Palo Alto Networks next-generation firewalls are specifically designed to correct the inadequacies of more traditional port protocol firewalls in combating the latest security threats. While a conventional firewall allows security rules to be established based on port number alone, PAN perimeter protection facilitates true granular control. Using unique technologies called App-ID, User-ID, and Content-ID, Palo Alto Networks firewalls accurately identify which applications are being used on your network, who is using them, and the specific data that is being transferred. Armed with this information, your organization is better placed to win the war against malware and network misuse.

At Digital Scepter, we quickly identified hardware from Palo Alto Networks as being the future of the firewall, and invested our resources into becoming a leading provider of Palo Alto Networks firewall devices. Now, as a result of our longstanding relationship with Palo Alto Networks, we are proud to announce that we have become a certified Palo Alto Networks Platinum Level Partner, marking our ongoing commitment to delivering the best network security in the marketplace.

What does this news mean for perimeter protection customers?

With threats becoming more advanced and the efficiency of next-generation firewalls at an all-time high, more and more customers are contacting Digital Scepter with an interest in Palo Alto Networks products. However, as other network security specialists come to realize the astonishing power of Palo Alto Networks devices, it is not enough to act as a simple reseller. Digital Scepter has always offered a level of insight and expertise that other providers simply cannot match.

The Palo Alto Networks Platinum Level Partner status is awarded to partners who achieve significant sales, and who are also able to demonstrate an extensive knowledge of and insight into Palo Alto Networks products. This achievement comes as the result of continued investment in the Palo Alto Networks next-generation firewall line, as well as regular training and research on best practices for implementation among organizations of differing sizes. Digital Scepter provides a comprehensive service range that begins with network analysis, identifies the most appropriate solution for your specific concerns, and designs a configuration that maintains excellent performance and network reliability. Achieving a Platinum Level Partner status from Palo Alto Networks certifies Digital Scepter’s technical aptitude in every step of this process.

Becoming a Platinum Level Partner also demonstrates the longevity of the relationship between Digital Scepter and the Palo Alto Networks team. Technical understanding and exhaustive product knowledge set the foundation for the best firewall protection setups, but it is the immediacy and dependability of this relationship that makes Digital Scepter able to customize your network security to guarantee that your every requirement is met.

Approved next-generation firewalls with expert advice from Digital Scepter

Through our relationship with Palo Alto Networks, Digital Scepter has become an Accredited Configuration Engineer (ACE), identifying our experience and expertise in the best implementation practices for Palo Alto Networks next-generation firewalls. Digital Scepter also holds a Certified Network Security Engineer (CNSE) status, which certifies a deep understanding of the entire firewall range in order to select the most appropriate solutions for each specific scenario. Now, with the addition of Platinum Level Partner status, Digital Scepter can match technical expertise with direct access to and support from Palo Alto Networks.

Digital Scepter is a boutique specialist in perimeter protection and network security, helping organizations to protect their network infrastructure against a range of threats. We offer diagnostic services such as an Application Visibility Report, advice on the most appropriate software and hardware solutions, and sourcing and installation of all necessary equipment. As well as having a close relationship with Palo Alto Networks, Digital Scepter regularly works with leading suppliers such as Zscaler, Trend Micro, Solutionary, and Tanium.

To find out more about network security services from Digital Scepter, visit digitalscepter.com or call 1-888-299-3718 today.

With network technology advancing at such an astonishing rate, keeping your business protected against the latest dangers can feel like an overwhelming, time-consuming, and often confusing process. In the past ten or so years, the number of counterproductive ways for employees to spend their time online has dramatically increased, with the dawn of social media and browser-based entertainment marking a downturn in workplace productivity. Online trends have also had a significant impact on Internet-facing data centers, where hosted accounts have more sophisticated ways to breach acceptable usage policies.

In this article, we discuss how the more traditional port protocol firewall device is no longer able to keep up with the recent trends in Internet use, and how – for dependable protection – the Palo Alto Networks (PAN) next-generation firewall provides the robust security your network requires. We also explore how the advanced technology within a next-generation perimeter protection device can help keep your business connected, available, and productive at all times.

Why port-blocking firewall devices fail to meet the demands of modern security

Whenever data is sent through a network, either internally or externally via the Internet, a connection is formed across a specific port. The easiest way to think of a port is as a door through which people can enter or exit a device, such as the computer you are using. For continuity in the development community and to eliminate the risk of data becoming corrupted and unusable, every application should, theoretically, use a unique port number – for example, a web browser using HTTP protocol would send traffic through port number 80, while a POP email inbox would operate over port number 110.

With this in mind, it is no surprise that a traditional perimeter security system such as a firewall works by restricting access to specific ports across your network. Let us imagine that we want to stop our employees from browsing the Internet. To achieve this with a traditional firewall, we can block all activity on port number 80, rendering web browsers inoperable, or block access to specific IP addresses through port 80, stopping users from accessing specific websites.

However, as the Internet becomes an increasingly integral part of day-to-day business, the strict filtering associated with port-blocking firewalls can restrict the ways in which the Internet can enhance productivity. Fundamentally, a traditional firewall protection device lacks the rich, granular control that is necessary for balancing effective security against flexible use.

Advanced granular protection with a Palo Alto Networks next-generation firewall

Founded with the goal of developing a solution that matches robust perimeter protection with user-specific, application-specific, and content-specific controls, Palo Alto Networks has grown to become a leading force in the development and manufacturing of next-generation firewall devices. By implementing a wide range of policy options built around detailed analysis of all incoming and outgoing traffic, Palo Alto Networks firewall protection makes network security more powerful, available, and easy-to-use than ever before.

Let’s look at how a Palo Alto Networks firewall can make your data center more secure.

1. Powerful multi-gigabit firewalls with no service degradation

Above all else, a perimeter protection device should feature powerful mitigation technology to analyze data and implement your preferred policies at speed. Palo Alto Networks uses three distinctive proprietary technologies – App-ID to identify the specific application that is being used on a client machine, User-ID to determine the individual who is using it, and Content-ID to look at the specific data that is being transmitted. As a result, data centers can enjoy incredibly accurate control over which applications are allowed, who is allowed to use them, and the ways that they can be used within your network.

All of this is achieved on a multi-gigabit device that when deployed in-line into your network, causes no degradation in performance or functionality. A Palo Alto Networks firewall provides invisible network protection that never gets in the way of approved use and expected system performance.

2. Flexible platform to enable network segmentation

While any firewall can do network segmentation, port- and IP address-based segmentation is as meaningless in the data center as it is in the perimeter – which is to say, practically worthless in the face of an application and threat mix that can, for the most part, use any open port. Furthermore, controlling access by IP address or IP address pool is an equally poor approximation for users.  To better meet zone-based compliance requirements, an organization needs network segmentation by user and application. So, for example, an organization can segment off the servers containing cardholder data, and only permit access to that segment to finance users employing the payments application – thus containing and limiting access, and maintaining for individual accountability. Having that level of control, and perhaps most importantly, auditability, has proven to be indispensible for many large enterprises.

3. Diversity of architectures

Another key attribute of enterprise data centers is diversity of architectures. Part of this is due to the fact that in some organizations, internal “data centers” aren’t necessarily a single place. This means that the usual stack of routers, core switches, access switches, and other network resources can look a little different in the face of extensive use of VLANs and distributed application components. This is another strong suit of Palo Alto Networks next-generation firewalls.

Additionally, the ability of these firewalls to integrate at L1 (virtual wire), L2, and L3, even operating in mixed mode across a port-dense appliance. Furthermore, the ability to trunk VLANs, aggregate ports, and perform role-based administration across security zones and virtual firewalls enables organizations to integrate next-generation firewalls into any architecture and operational model.

4. Data center control of rogue applications

One of the other key uses of Palo Alto Networks next-generation firewalls in the enterprise data center is control of rogue applications. Rogue, misconfigured SharePoint deployments, unauthorized use of SSH on non-standard ports, and even P2P filesharing have been discovered and controlled in customer deployments. Another example is more operationally focused – application developers are known to implement databases and other application components on any port that is convenient. Rather than attempt to control application developers, control the applications – meaning if MySQL is an approved application between security zones, it’s allowed, regardless of which port it’s on. This greatly simplifies keeping up with developers, and safely enables key applications without increasing the attack surface.

5. Redundant firewall devices for high-availability networks

Given the integral role that a firewall plays in-line as part of your overall network, it is important that any data center take steps to eliminate their firewall as a single point of failure. This is particularly vital in the world of web hosting data centers, where network availability exists as a major selling point of the service that you might offer. As well as being easily paired in active/passive and active/active combinations for redundancy in case of hardware failure, Palo Alto Networks next-generation firewalls can be placed into asymmetric environments as necessary. In the event that one of your firewalls becomes overloaded with traffic or is misconfigured, a heartbeat connection allows your second device to step into action and keep your network secure.

6. Dependable administration for ease-of-use, regardless of traffic

As well as featuring redundancy options to facilitate high-availability networking, Palo Alto Networks firewalls include some built-in functionality to keep administration panels available, even at times of high usage. The Palo Alto Networks web-based control panel, offering at-a-glance, color-coded risk assessments alongside detailed usage logs by username, runs with its own dedicated processing and memory. As a result, data centers can be confident that they are in full control of their network and are able to alter settings and configuration, even during the most dramatic traffic spikes.

Together, the power, availability, and absolute control of a Palo Alto Networks firewall makes this next-generation solution the most dependable form of perimeter protection on the market. With the right implementation and integration with your existing network, a Palo Alto Networks firewall offers bulletproof security, convenient administration, and – most importantly – complete peace of mind that your network is safe.

Find out more about Palo Alto Networks firewalls from Digital Scepter today

There is little doubt that using a next-generation firewall is an excellent solution for any data center that depends on availability of data alongside control-of-use. However, for the best results, you will also need to call on the expertise of an experienced network security specialist who can advise you on the best solution, configuration, and implementation for your unique security needs.

With years of experience in network security, Digital Scepter is a boutique protection specialist that can provide you with invaluable insight into the threats that your network faces and the defense necessary to combat these threats effectively. Digital Scepter works with businesses and organizations of all sizes to diagnose risk, design solutions, and implement them in the best ways possible.

Demonstrating advanced expertise in Palo Alto Networks devices specifically, Digital Scepter is also a Palo Alto Networks Platinum Level Partner, guaranteeing consistently best practice implementations of all Palo Alto Networks firewall devices.

For more information on Palo Alto Networks next-generation firewalls from Digital Scepter, call 888-299-3718 or visit digitalscepter.com today.

Did you know that:

1. Instead of establishing new server port numbers, legitimate applications are now designed to run over standard, commonly allowed ports. For example, Dropbox uses ports 443 and/or 80 to allow users to upload and download files to their cloud-based storage service. Do you know with certainty that your employees aren’t uploading sensitive corporate data to Dropbox?
2. Many applications are designed to dynamically probe your firewall to find an open port. For example, each time Skype starts running it probes your firewall to see what ports are open and then communicates over this port. If you then close the first port Skype picks, Skype will then move on to the next open port. It is impossible for a traditional firewall to block Skype unless you close every port on your firewall!
3. Malware often communicates over ports 80, 443, and 53. For example, Conficker relies on port 80. (Source)

Traditional stateful-inspection firewalls will permit all the aforementioned traffic, both legitimate and malicious, because stateful-inspection firewalls only make decisions based upon port numbers and session state – they are not capable of looking at the application layer data which is needed to identify the true application.

The bottom line is this:

Do you really know what applications are running on your network?

And if not, how can you be sure that malicious, tunneled communication isn’t occuring on allowed ports?

Many firewall vendors claim to identify networked applications, however their solutions include a ‘bolt-on’ approach that is not only complex to manage and dramatically reduces throughput, but they simply are not effective in correctly identifying the applications. Digital Scepter can demonstrate true application visibility and control using a Palo Alto Networks next generation firewall which correctly identifies the applications which are passing traffic, regardless of protocol, port, or evasive tactic. In addition, a Palo Alto Network firewall can even identify applications running inside encrypted SSL tunnels. And once you can identify the application, you have the power to either permit or deny this traffic or you could rate-limit it.

Correctly knowing all the applications would be the first step in creating a positive security model, where you permit only known, desired applications and deny everything else. Using a positive security model implemented on a Palo Alto Networks next generation firewall dramatically reduces risk because malware and other risk-inherent applications would not be permitted, even if they communicate over permitted ports. In addition, zero day malware would be blocked as well since it would not be identified as an allowed application.

Contact Digital Scepter today and let us help you identify and secure your networked applications with a Palo Alto Networks firewall!

Digital Scepter’s certified network security engineers are Palo Alto Networks experts. They will access your firewall via a secure remote connection to tune and verify your firewall settings to assure you that the devices are updated, configured correctly and giving you the return on your investment that you need. It’s also a good time to consider new design options for your network in the future.

Benefits

• Fix issues before they turn into problems
• Proactive analysis of firewall policies, log files and settings.
• Reduce management costs and put time back into your day
• Ensure settings and policies are compliant with the latest best practices and threat signatures.

HealthCheck program includes:

• Analysis of firewall settings and policies to trojans, phone-home and other attacks
• Software ands subscription update settings and verification
• Review of HA configurations and perform scheduled testing
• Check and report on firewall traffic statistics for growth planning
• Check and report on VPN and Global Protect
• Evaluate security, captive portal and QOS rulesets
• Evaluate and adjust URL filtering profiles
• Deliver system reports of application use, URL categories and threats found
• Recommend actions based on findings

Subscriptions

Available one-time, monthly or quarterly.