***Networking Skills with varios technologies including Cloud , Programming Automation, Routing , switching, Firewall ==Rajesh Nayak

 Q. What is Network ?

 Ans. When two or more devices are connected and sharing the to each other called "Network".

Q.How many types of Network we have ?

Ans. We have 3 types of networks - LAN, WAN,DMZ.


                                                          Firewall 


Today we starting the topic firewall. before starting the firewall , we need to know about below questions:

1)What is firewall

2) Types of Firewall

3)Why We need firewall 

4) Stateful  and Stateless Firewall 

5) Basics of Paulo Alto 

6) Syllabus of Paulo Alto.


 



 Above drawing showing inside and outside Network. a company using LAN (left side) and Right side outside WAN(ISP/Public/cloud). we we apply ACL for permit all the traffic into router LAN interface it will permit all the traffic for outside and into outside interface we apply deny ACL.  into this case only Lan traffic travel from LAN to outside but Outside traffic will not enter into LAN due to deny into outside interface. only user send data to outside user but can not get ack into reply.

Cisco routers, by default, will permit and forward all packets they receive, if they have a matching route in their routing table. If you want to restrict this, you have to configure some access-lists. This can become an administrative nightmare if you have a lot of interfaces and/or access-list rules. Here’s an example:

The router above has two incoming access-lists to block some of the traffic from the hosts. We also have two access-lists that prevent traffic from the Internet from entering our network. We might be able to reuse some of the access-lists but we have to apply an access-list to four interfaces.

To overcome this problem we use firewall instead of implementing ACL into router. what firewall will do please see into below picture. 



We are having two types of firewall. stateful and stateless Firewall mention the session table(connection table.
Stateful firewall : it Maintain the state table also called connection table/session table. this table has connections details whichever pass through the firewall. source add., destination address and Port no.







**************************************************************************************

Paulo Alto : commands -Below is the console cli access of PAN -OS8 Paulo alto firewall

Show

Request











Below are the roles which we gonna configure to access the Paulo alto device , below is the screenshot how to configure and where you can find this option.



*To check the cluster and HA into paulo alto 

 1)Goto deshboard -->widgests ->> 


Below are the few commands use to test the ipsedk..

test 

if https or url not working for paulo alto 

test http-server



 






Comments

Post a Comment