Tenable Network Security Podcast Episode 159 - "Auditing & Hardening Palo Alto Firewalls"

Announcements

• Video: Nessus Configuration & Compliance Auditing
• Tenable Network Security Receives 5-Star Rating from SC Magazine
• Americans Willing to Spend More to Thwart Cyber Attacks: Survey
• We're hiring! - Visit the Tenable website for more information about open positions.
• Check out our video channel on YouTube which contains new Nessus and SecurityCenter tutorials.
• Tenable Tweets - You can find us on Twitter at http://twitter.com/tenablesecurity where we make product and company announcements, provide Nessus plugin statistics, and more!
• Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join Tenable's Discussion Forum for custom scripts, announcements, and more!
• You can subscribe to the Tenable Network Security Podcast on iTunes!

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

• Asterisk Peer Multiple Vulnerabilities (AST-2012-014 / AST-2012-015)
• mDNS Client Queries
• MAC change detection (SNMP)
• Mozilla Thunderbird 17.x < 17.0.3 Multiple Vulnerabilities
• Google Chrome < 25.0.1364.97 Multiple VulnerabilitiesSeaMonkey < 2.16 Multiple Vulnerabilities
• Mozilla Firefox 18.x <= 18 Multiple Vulnerabilities
• Siemens SIMATIC RF-MANAGER Detection (SCADA)

Feature Spotlight: Auditing & Hardening Palo Alto Firewalls

Tenable Nessus ProfessionalFeed customers can now audit the configuration of PAN-OS™-based Palo Alto Networks firewalls. Nessus can audit the firewall operational configurations and allow Palo Alto firewall reports to be embedded into Nessus reports. Mehul Revankar, Tenable's lead compliance auditing engineer, and Russell Butturini, Senior Enterprise Security Architect and Nessus and SecurityCenter customer, join us to talk about this new feature and the benefits.

Listen to the podcast to learn:

1. What makes Palo Alto firewalls different (e.g., the kind of data they are collecting, the detection capabilities, etc.)?
2. What types of audits you can perform against the firewall settings and logs?
3. What advantages does this feature have when the firewalls are configured for load balancing?
4. Why is it important to be able to query the data collected on threats, services, and anti-virus data?
5. How does this new feature integrate into Nessus?
6. What are some examples of interesting results and queries that can result from scanning Palo Alto firewalls?