6.15 Ensure a secure Data Filtering profile is applied to all security policies allowing traffic to or from the Internet

Information

Create a secure Data Filtering profile and apply it to all security policies permitting traffic to or from the Internet. The Data Filtering profile may be applied to security policies directly or through a profile group.
Rationale:

Solution

From GUI:
Navigate to Objects > Security Profiles > Data Filtering
Create a Data Filtering Profile: Applies to all security policies allowing traffic from Internet Check the Shared and Data Capture boxes Data Pattern set to CC-and-SS-Weight Applications set to Any File Types set to Any Direction set to Both Alert Threshold set to 20 Block Threshold set to 0
Configure a Data Threshold Profile to be applied to all Security Policies permitting traffic to the Internet.
Default Value:
Not Configured

See Also

https://workbench.cisecurity.org/files/2104

Item Details

Category: SECURITY ASSESSMENT AND AUTHORIZATION

References: 800-53|CA-7, CSCv6|13.3, CSCv7|13.3

Plugin: Palo_Alto

Control ID: 970992ff06b0b16854ece00095fac141fb964db13cf56ded7b44a9b209a31f07