How I Learned to Stop Worrying and Love SSL Decryption

Posted by George Finney on Apr 22, 2019 1:45:06 PM

Monday, April 22, 2019

By George Finney, Fuel User Group Board Member

As a chief information security officer (CISO) for a university, I sometimes introduce myself in meetings as "Big Brother" to break the ice a little bit. I don't actually read people's email, but I've found getting that kind of issue out on the table early is helpful to building trust. We want our users to know we have well-defined rules of engagement when handling personal information, but we also need them to understand that to provide great security, there can be instances where we need to be a little invasive. Case in point: encrypted traffic.

Read More

Topics: SSL decryption, WildFire, SSL Forward Proxy, SSL Inbound Inspection, firewall

Talking Google Kubernetes Engine with Pradeep Biradar

Posted by Charles Buege on Apr 10, 2019 3:27:18 PM

Wednesday, April 10, 2019

Pradeep BiradarPradeep Biradar is a software engineer for Palo Alto Networks, working on the public cloud team. He recently wrote a detailed blog post on the Palo Alto Networks Live Community blog, sharing how to secure a Google Kubernetes Engine (GKE) environment on the Google Cloud Platform (GCP). 

We spoke with Pradeep to learn more about his career, his thoughts on what cybersecurity professionals should keep an eye on, and dove into some of the specifics of GKE.

Read More

Topics: the cloud, public cloud, Pradeep Biradar, Google Kubernetes Engine, RedLock, Industry 4.0, Google Cloud Platform

PAN-OS 9.0 Is Here: Features I’m Looking Forward to Testing

Posted by Dwight Hobbs on Mar 28, 2019 11:17:40 AM

Thursday, March 28, 2019

By Dwight Hobbs, Fuel User Group, Board of Directors

Palo Alto Networks recently announced the availability of PAN-OS 9.0, the next major release of their appliance operating system. With any major update there are always bug fixes and improvements, as well as those big new features that everyone wants to get their hands on and try out. For PAN-OS 9.0, the major additions are a new security subscription (called DNS Security), large improvements to URL filtering, a new Policy Optimizer tool, and new high-end firewalls (both physical and virtual).

Unfortunately for me, my organization is going through a tech refresh cycle, so I won’t be able to test out the new features in production for a little while. In the meantime, I want to highlight the two features that I’m most interested in testing.

Read More

Topics: Fuel Board of Directors, Palo Alto Networks, Fuel Volunteers, Fuel member, Dwight Hobbs, DNS Security, Policy Optimizer, PAN-OS 9.0

How to Build an IPSec Tunnel Between a Palo Alto Networks Firewall and an IPFire Firewall

Posted by Charles Buege on Mar 21, 2019 3:29:40 PM

Thursday, March 21, 2019

From Charles Buege, Fuel User Group Member

Continuing my series on how to setup IPSec tunnels on Palo Alto Networks firewalls, this article covers how to connect to an IPFire firewall. As I wrote in the initial article in this series, I realized not everyone would necessarily have access to the same resources I would. This got me thinking – how could someone with access to only one Palo Alto Networks firewall learn how to setup and configure IPSec tunnels? 

Read More

Topics: Charles Buege, Palo Alto Networks Next-Generation Firewall, IPSec Tunnel, how-to articles, IPFire

Combining Traditional and Modern Security for Full Protection

Posted by Fuel HQ on Mar 13, 2019 10:18:28 AM

Wednesday, March 13, 2019

Combining Modern and TraditionalIn any industry, change and evolution is inevitable, and organizations must put in the work to keep pace. In a recent Fuel Webinar, Tim Woods, vice president of technology alliances at FireMon, used an example of Borders selling its online book operations to Amazon several years ago. The retailer didn't foresee the changing times, believing online retail would not take off. Borders was unable to combine their traditional, physical storefronts with online retail, and now Amazon ranks as the largest book seller in the world.

“We have to be looking for ways to reinvent ourselves. We have to remain innovative. We have to remain competitive,” Woods said. “That’s what businesses are doing today with technology like cloud computing and virtualization, and the Internet of Things.” That’s not to say that Woods doesn’t see the value in traditional infrastructure. On the contrary, it’s combining the old and the new that makes an organization so effective. 

Read More

‘Try as Many Aspects of IT as Possible’: A Q&A with Fuel Volunteer Charles Buege

Posted by Fuel HQ on Mar 5, 2019 11:15:41 AM

Tuesday, March 5, 2019

2018-02-21 - Charles Headshot_croppedCharles Buege has been part of the IT industry for over 25 years. He has a passion for his work, and where some might see an insurmountable problem, he sees another challenge to chip away at. Charles has an at-home lab setup, which has allowed him to author several popular “how to” articles for the Fuel blog

Charles also runs an IT-based Meetup group in Naperville, Ill., called The IT Crowd. They meet monthly to discuss different technologies centering primarily around DevOps – Palo Alto firewalls, security, virtualization, Linux, and programming languages. 

We spoke with him to learn more about his career path, why he joined Fuel, advice for young professionals, and more.  

Read More

What’s in a Name? Unit 42 Breaks Down Threat Actor Naming

Posted by Fuel HQ on Feb 27, 2019 12:28:51 PM

Wednesday, February 27, 2019

Unit 42 Podcast Threat Actor NamingIn a recent episode of Unit 42’s podcast, Don’t Panic (S3E3, "Threat Actor Names"), Rick Howard, Palo Alto Networks CSO, and Ryan Olson, Palo Alto Networks senior director of threat intelligence, hash out threat actor naming.

Read More

How the Fuel Sacramento Chapter Formed a PCNSE Study Group

Posted by Fuel HQ on Jan 30, 2019 1:21:36 PM

Wednesday, January 30, 2019

By Raphael Carrillo, Fuel Sacramento Chapter Lead

business-conference-learning-7095During our June Fuel Chapter preparation meeting, held between Roger Schotsal and myself, the conversation of getting a study group to prepare for the Palo Alto Networks Certified Network Security Engineer (PCNSE) certification came up. We thought of it as a small get together with some folks to see how we could prepare to take the test. We agreed that the best way to market that was at our Fuel Chapter meeting. We announced it at the end of the gathering and it seemed that people were interested.  

Read More

How to Build an IPSec Tunnel Between Two Palo Alto Networks Firewalls

Posted by Charles Buege on Jan 7, 2019 12:55:33 PM

Monday, January 7, 2018

By Charles Buege, Fuel User Group Member 

IPSec Tunnel Header ImageSetting up a connection between two sites is a very common thing to do. With a Palo Alto Networks firewall to any provider, it’s very simple. With a Palo Alto Networks firewall to another Palo Alto Networks firewall, it’s even easier. Here’s a step-by-step process for how to get an IPSec tunnel built between two Palo Alto Network firewalls.

Read More

Topics: Charles Buege

Full Packet Capture for Full Network Visibility

Posted by Fuel HQ on Dec 27, 2018 11:48:00 AM

Thursday, December 27, 2018

PublicSectorIt can be tempting for companies to emphasize the adaptation and usage of new security tools. New tools with better features can be flashy, easy to justify and widely available. However, new tools are of no use if they aren't able to be deployed with speed and accuracy to respond to cybersecurity attacks.

Cyberattacks can happen at a moment’s notice. In a recent Fuel webinar, David Monahan, managing research director of security and risk management at Enterprise Management Associates (EMA), warned about five main attacks that security teams face. These include internet-based reconnaissance and direct attacks; phishing emails; malicious websites, links, and malvertising; rogue software; and tainted programs.

Read More

Posts by Topic

see all

Subscribe to Blog Updates

Recent Posts

Posts by Topic

see all