Initial Config V | SSL Decryption | Palo Alto Training | Tutorial
ฝัง
- เผยแพร่เมื่อ 13 ก.พ. 2024
- In this installment we are going to quickly configure SSL decryption with a self-signed certificate, this is a quick and easy way of gaining a lot more visibility into network traffic, it assists URL Filtering and Threat Prevention efficiency and reduces false positives, we also discuss the need for not decrypting certain traffic for either privacy concerns or legal reasons.
#paloaltonetworks #paloaltotraining #paloaltofirewall #ssl #decryption #mitm
![[TH] VCT Pacific Stage 2 - Playoffs Grand Final // GEN vs DRX](http://i.ytimg.com/vi/Su6gA_UPs9s/mqdefault.jpg)
Thanks for a great video.
Thank you for watching!
my Question related to is it also decrypting Data inside packets ??? if yes then how Financial sites become secure ...anyone can fetch confidential data inside packet ..
Hi,
This is more a question of policy, essentially (if I understand your question correctly) SSL decryption rests on the premise that people using a corporate network agree to having their traffic decrypted for inspection purpose based on the fact that they are using somebody else's equipment and infrastructure for work related purposes as opposed to private personal use, so the onus in that case would be on the user to moderate their behavior against what they know is going to be seen, however when it comes to financial information and other privileged data such as health and medical for instance there are multiple laws governing the ability to decrypt this traffic and in every case I am aware of it is deemed illegal and can not be done, therefore the situation would never arise, that is why the no-decrypt policy is as important as decrypt policy.
SSL decryption does mean that the traffic would pass through the firewall in plain text so we control what data gets decrypted to ensure the balance of security for users privacy and security and the company providing the infrastructure to the employee / sanctioned user.
Hope that helps!