Bite-Sized Best Practices: Breaking Down the Palo Alto Networks Best Practices Booklet

Posted by Fuel HQ on Aug 24, 2017 11:53:18 AM

This past June, Fuel released the Palo Alto Networks Best Practices, for users of Palo Alto Networks products, an online resource with more than 300 pages containing roughly 200 user recommendations, covering everything from initial configuration to expanding your security planning to the public cloud.  

If you have yet to download the Palo Alto Networks Best Practices, you’re missing out on a major benefit of Fuel membership. Download the Best Practices Booklet today!

Don’t have time to read 300 pages? Fuel’s Education Committee is here to help, breaking this resource down into four main sections: Manageability, Security, Performance and High Availability. Throughout the coming months, we’ll be featuring a different quarterly topic, and providing webinars, open member dialogues, weekly tips and more to members, courtesy of Fuel volunteers—users like you.

So, what type of information can you expect from these four sections covered in the Best Practices Booklet? Here is a quick rundown:


The measure of and set of features that support the ease, speed, and competence with which a system can be discovered, configured, modified, deployed, controlled, and supervised. For firewalls, this means managing your firewall topology using a centralized management scheme. The goal is a single interface where you can manage configuration, handle connectivity and load balancing, and monitor the entire topology.

Reader will learn: 

  • Key configuration considerations to support centralized management
  • How to simplify the number and structure of active rules
  • The best ways to manage commits


In the simplest terms, a firewall is a security device that uses rules to control incoming and outgoing network traffic. Different firewalls and configurations offer differences in how they monitor traffic, as well as how they block or allow traffic.

Readers will learn: 

  • How to plan for security at the physical and network level
  • Strategies to plan for which traffic to permit and which to block
  • Where and how to use security profiles


The balance of speed of business and security. Firewalls must process large amounts of traffic both to and from outside the network, as well as within. Key measurements of firewall performance include throughput, forwarding capacity, connections per second and concurrent connections.

Readers will learn: 

  • How to audit and adapt the rulebase 
  • The value of blacklists and how to use them
  • The best ways to use QoS to prioritize traffic

High Availability 

High availability is a configuration in which two firewalls are placed in a group and their configuration is synchronized to prevent a single point to failure on your network. A heartbeat connection between the firewall peers ensures seamless failover in the event that a peer goes down.

Readers will learn: 

  • When, where and how to create backups
  • Planning for DoS protection
  • What to consider when testing your HA backup

Don’t miss our webinar, the Fuel Best Practices Roundtable - Decreasing Your Attack Footprint, on Tuesday, September 12, 2017.

Register Now

Be sure to subscribe to our “Tip of the Week” to have recommendations delivered directly to you, plus information on upcoming Best Practices education programming. You can also download the full book and review at your own pace!

Download Now

Topics: Cybersecurity, Fuel Education, Palo Alto Networks, best practices

Posts by Topic

see all

Subscribe to Blog Updates

Recent Posts

Posts by Topic

see all