Detections
Analytics

CIS Palo Alto Firewall 9 Benchmark v1.0.0 L1

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Palo Alto Firewall 9 Benchmark v1.0.0 L1

Updated: 5/27/2022

Authority: Network Devices

Plugin: Palo_Alto

Revision: 1.7

Estimated Item Count: 85

Audit Changelog

 
Revision 1.7

May 27, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.6

Apr 25, 2022

Miscellaneous
  • References updated.
Revision 1.5

Mar 29, 2022

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.4

Jun 17, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.3

May 6, 2021

Functional Update
  • 3.1 Ensure a fully-synchronized High Availability peer is configured
  • 3.3 Ensure 'Passive Link State' and 'Preemptive' are configured appropriately - Election Setings
  • 6.1 Ensure that antivirus profiles are set to block on all decoders except 'imap' and 'pop3'
Miscellaneous
  • Platform check updated.
  • References updated.
Added
  • CIS_Palo_Alto_Firewall_9_Benchmark_v1.0.0_L1.audit from CIS Palo Alto Firewall 9 Benchmark v1.0.0
Removed
  • 3.2 Ensure 'High Availability' requires Link Monitoring and/or Path Monitoring
Revision 1.2

Feb 8, 2021

Functional Update
  • 1.6.1 Ensure 'Verify Update Server Identity' is enabled
Informational Update
  • 4.2 Ensure 'Applications and Threats Update Schedule' is set to download and install updates at daily or shorter intervals
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.1

Sep 29, 2020

Miscellaneous
  • References updated.