Palo Alto Networks Panorama network security management provides static rules and dynamic security updates in an ever-changing threat landscape. Reduce administrator workload and improve your overall security posture with a single rule base for firewall, threat prevention, URL filtering, application awareness, user identification, file blocking and data filtering. Panorama network security management enables you to control your distributed network of our firewalls from one central location. View all your firewall traffic, manage all aspects of device configuration, push global policies, and generate reports on traffic patterns or security incidents — all from a single console. Panorama is available either as a dedicated management appliance or as a virtual machine. In summary, Panorama provides streamlined policy management, simplified operations, unparalleled network and threat visibility, comprehensive log collection including logs from all your next-generation firewalls and traps advanced endpoint protection, and flexible deployment options.
The management features in Panorama streamline administrative efforts and duplication associated with the deployment and configuration of next-generation firewalls in multiple locations. Key highlights of Panorama enterprise-class management features include single security rule base for firewall, threat prevention, URL filtering, application awareness, user identification, file blocking and data filtering. Support for multilevel device groups and management access segmentation, to match complex organizational structures. Streamlined device and network configuration with template stacks. Visual and intuitive rule grouping with a tag-based browser. Easy device configuration import of individual or pre-production firewalls. Panorama administrators can quickly view log activities, even from endpoint traffic, and results can be saved for future queries or exported for further analysis. Using the ACC (Application Command Center) from Panorama provides you with a highly interactive, graphical view of application, URL, threat and data traffic across your entire Palo Alto Networks deployment.
Panorama Flexible Deployment Options
Palo Alto Networks Panorama offers flexible and scalable deployment options. The M-100 appliance allows you to deploy Panorama management and logging functions on a dedicated appliance, or you can separate the functions in a distributed manner for improved performance and scalability. The large-capacity M-500 offers great performance and scalability with front-to-back airflow and dual power supplies, making it ideal for deployment in data centers. You can deploy Panorama as a virtual appliance on VMware ESXi — allowing you to support your virtualization initiatives and consolidate rack space. For larger, distributed deployments, both the M-100 and M-500 appliances can be used as log collectors to streamline the log collection process.
Using the ACC (Application Command Center) from Palo Alto Networks Panorama provides you with a highly interactive, graphical view of application, URL, threat and data traffic across your entire Palo Alto Networks deployment. The ACC includes a tabbed view of network activity, threat activity and blocked activity. Each tab includes pertinent widgets for better visualization of traffic patterns on your network. You can create custom tabs, which include widgets that enable you to drill down into the information that is most important to the administrator. The Palo Alto Networks Panorama Application Command Center provides a comprehensive, fully customizable view of not only current, but also historical data.
Palo Alto Networks Panorama keeps enterprise users in mind. Control next-generation firewalls at your internet edge, in your data center, and in your private and public cloud deployments, from a single console. Deploy Panorama via virtual or physical appliances, or both. Use appliances as management units, or log collectors, in hierarchical deployment options. An automated correlation engine cuts through the data clutter, identifying compromised hosts and surfacing malicious behavior that would otherwise be buried in information noise. Palo Alto Networks fully customizable Application Command Center (ACC) provides comprehensive, correlated insight into current and historical network and threat data.
Palo Alto Networks Panorama
Allowing you to define granular, context-aware policy control, Palo Alto Networks Aperture gives you the ability to drive enforcement, and the quarantine of users and data, as soon as a violation occurs. This enables you to quickly and easily satisfy data risk compliance requirements, such as PCI and PII, while still maintaining the benefits of cloud-based applications. The use of SaaS applications is creating new risks and gaps in security visibility for malware propagation, data leakage and regulatory non-compliance.
Palo Alto Networks Aperture delivers complete visibility and granular enforcement across all user, folder and file activity within sanctioned SaaS applications, providing detailed analysis and analytics on usage without requiring any additional hardware, software or network changes. Palo Alto Networks Aperture provides complete visibility across all user, folder and file activity, providing detailed analysis that helps you transition from a position of speculation to one of knowing exactly what’s happening at any given point in time. This gives you the ability to view deep analytics into day-to-day usage, which enables you to quickly determine if there are any data risk or compliance related policy violations.
Preventing successful cyber attacks — the end goal of security is to enable your operations to flourish and keep your organization out of the headlines associated with cyber breaches. This means reducing the likelihood of a successful attack. By focusing on preventing successful attacks, the Palo Alto Networks next-gen security platform reduces cybersecurity risk so that it is manageable and quantifiable, allowing organizations to compartmentalize their biggest threats and focus on business operations.
The Palo Alto Networks next-gen security platform protects your digital way of life by safely enabling applications and preventing known and unknown threats across the network, cloud, and endpoints. The native integration of the platform delivers a prevention architecture that can provide superior security at lower total cost of ownership. Palo Alto Networks Panorama network security management lets you view all firewall traffic, manage device configuration, push global policies, and generate reports on patterns or incidents — all from one central location. Palo Alto Networks Panorama network security management provides static rules and dynamic security updates in an ever-changing threat landscape.
With a few clicks, you gain visibility into the application bandwidth and session consumption, the associated threats, as well as the source and destination of the application traffic. With this knowledge, you can proactively align application usage with your business requirements. Palo Alto Networks malware protections reduce the number of available attack vectors by terminating malware downloads. The blocked malware name, malicious URL or application, and the victim user are logged within the UI, so you have the contextual information needed to apply additional policies, if necessary.
Palo Alto Networks IPS, available within the threat prevention subscription, prevents exploits at the network level, using targeted vulnerability and exploit kit based signatures to thwart multiple variations of exploits and a wide variety of exploit kits. The Palo Alto Networks skilled threat research team, whose job it is to continuously investigate and reverse engineer network and application vulnerabilities, creates these protections and automatically pushes them to all subscribed devices on a weekly and emergency basis, fortifying your network against the latest exploits.
Defined as an environment in which you are responsible for the management of all aspects of the virtualization, hardware, compute, networking and security, a private cloud is often considered to be synonymous with your data center, and in fact, many data centers are 100 percent virtualized using VMware, Microsoft Hyper V, KVM or other private cloud technologies. The Palo Alto Networks VM-Series allows you to protect your private cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats.
The Palo Alto Networks VM-Series supports the following private cloud environments: VMware ESXi and NSX, Citrix NetScaler SDX, Microsoft Hyper V and KVM/OpenStack. In a public cloud, ensuring your applications and data are kept safe from attackers is your responsibility, and that is where the Palo Alto Networks VM-Series can help. The Palo Alto Networks VM-Series protects your public cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats. The Palo Alto Networks VM-Series supports the following public cloud environments: VMware vCloud Air, Amazon Web Services (AWS) and Microsoft Azure.