acrolinx edits

ProfessorKendrick · ProfessorKendrick · commit 954fbf99f78c · 2024-12-09T05:12:25.000-05:00
diff --git a/articles/partner-solutions/palo-alto/palo-alto-application-gateway.md b/articles/partner-solutions/palo-alto/palo-alto-application-gateway.md
@@ -1,14 +1,14 @@
 ---
-title: Cloud NGFW for Azure deployment behind Azure Application Gateway
-description: This article describes how to use Azure Application Gateway with Cloud NGFW for Azure by Palo Alto Networks to help secure web applications.
+title: Cloud Next Generation Firewall (NGFW) for Azure deployment behind Azure Application Gateway
+description: Learn how to secure web applications with Cloud NGFW for Azure by Palo Alto Networks.
 
 ms.topic: conceptual
 ms.date: 12/09/2024
 
 ---
 # Cloud NGFW for Azure deployment behind Azure Application Gateway
 
-This article describes a recommended architecture for deploying Cloud NGFW for Azure by Palo Alto Networks behind Azure Application Gateway. Cloud NGFW for Azure is a next-generation firewall that's delivered as an Azure Native ISV Service. You can find Cloud NGFW for Azure in Azure Marketplace and consume it in your Azure Virtual Network and Azure Virtual WAN instances.
+This article describes a recommended architecture for deploying Cloud NGFW for Azure by Palo Alto Networks behind Azure Application Gateway. Cloud NGFW for Azure is a next-generation firewall delivered as an integrated service for Azure. You can find Cloud NGFW for Azure in Azure Marketplace and consume it in your Azure Virtual Network and Azure Virtual WAN instances.
 
 With Cloud NGFW for Azure, you can access core firewall capabilities from Palo Alto Networks, such as App-ID and Advanced URL Filtering. It provides threat prevention and detection through cloud-delivered security services and threat prevention signatures. The deployment model in this article uses the reverse proxy and web application firewall (WAF) functionality of Application Gateway by using the network security capabilities of Cloud NGFW for Azure.
 
@@ -20,7 +20,7 @@ Cloud NGFW for Azure helps secure inbound, outbound, and lateral traffic that tr
 
 To help secure ingress connections, a Cloud NGFW for Azure resource supports Destination Network Address Translation (DNAT) configurations. Cloud NGFW for Azure accepts client connections on one or more of the configured public IP addresses and performs the address translation and traffic inspection. It also enforces user-configured security policies.
 
-For web applications, you benefit from using Application Gateway as both a reverse proxy and a load balancer. This combination offers the best security when you want to secure both web-based and nonweb workloads in Azure and on-premises ingress connections. Cloud NGFW for Azure allows the use of a single public IP address of Application Gateway to proxy the HTTP and HTTPS connections to many web application back ends. Any non-HTTP connections should be directed through the Cloud NGFW for Azure public IP address for inspection and policy enforcement.
+For web applications, you benefit from using Application Gateway as both a reverse proxy and a load balancer. This combination offers the best security when you want to secure both web-based and nonweb workloads in Azure and on-premises ingress connections. You can use a single public IP address of Application Gateway to proxy the HTTP and HTTPS connections to many web application back ends. Any non-HTTP connections should be directed through the Cloud NGFW for Azure public IP address for inspection and policy enforcement.
 
 Application Gateway also offers WAF capabilities to look for patterns that indicate an attack at the web application layer. For more information about Application Gateway features, see the [service documentation](/azure/application-gateway).
 
@@ -49,7 +49,7 @@ Here's an example user-defined route:
 - Next hop type: virtual appliance
 - Next hop IP address: 172.16.1.132
 
-After you deploy and configure the infrastructure, you must apply a security policy to Cloud NGFW for Azure that allows the connection from the Application Gateway virtual network. Application Gateway proxies the client's TCP connection and creates a new connection to the destination specified in the back-end target. The source IP of this connection is the private IP address from the Application Gateway subnet. Configure the security policy accordingly, by using the Application Gateway virtual network prefix to ensure that it's treated as the inbound flow. The original source IP of the client isn't preserved at layer 3.
+After you deploy and configure the infrastructure, you must apply a security policy to Cloud NGFW for Azure that allows the connection from the Application Gateway virtual network. Application Gateway proxies the client's TCP connection and creates a new connection to the destination specified in the back-end target. The source IP of this connection is the private IP address from the Application Gateway subnet. Ensure the Application Gateway virtual network prefix is treated as the inbound flow. The original source IP of the client isn't preserved at layer 3.
 
 Nonweb traffic can continue using the public IP addresses and DNAT rules in Cloud NGFW for Azure.
 
@@ -86,11 +86,11 @@ When you manage Cloud NGFW for Azure resources by using Panorama, you can use ex
 
 :::image type="content" source="media/palo-alto-app-gateway/palo-alto-app-gateway-zones-1.png" alt-text="Diagram that shows zone placement and traffic flows in Cloud NGFW for Azure.":::
 
-The ingress traffic that comes through Application Gateway is forwarded through the private zone to the Cloud NGFW for Azure resource for inspection and security policy enforcement.
+The Application Gateway's ingress traffic is forwarded through the private zone to the Cloud NGFW for inspection and security policy enforcement.
 
 :::image type="content" source="media/palo-alto-app-gateway/palo-alto-app-gateway-zones-2.png" alt-text="Diagram that shows zone placement in Cloud NGFW for Azure and traffic flow through Application Gateway.":::
 
-You need to apply special considerations to zone-based policies to ensure that the traffic coming from Application Gateway is treated as inbound. These policies include security rules, threat prevention profiles, and inline cloud analysis. The traffic is treated as private-to-private because Application Gateway proxies it, and it's sourced through the private IP address from the Application Gateway subnet.
+You need to apply special considerations to zone-based policies to ensure that the traffic coming from Application Gateway is treated as inbound. These policies include security rules, threat prevention profiles, and inline cloud analysis. The traffic is treated as private-to-private because Application Gateway proxies it, and is sourced through the private IP address from the Application Gateway subnet.
 
 ## Related content
 
diff --git a/articles/partner-solutions/palo-alto/palo-alto-create.md b/articles/partner-solutions/palo-alto/palo-alto-create.md
@@ -1,16 +1,16 @@
 ---
-title: Create a Cloud NGFW by Palo Alto Networks - an Azure Native ISV Service resource
-description: This article describes how to use the Azure portal to create a Cloud NGFW (Next-Generation Firewall) by Palo Alto Networks - an Azure Native ISV Service resource.
+title: Create a Cloud Next Generation Firewall (NGFW) by Palo Alto Networks
+description: This article describes how to use the Azure portal to create a Cloud NGFW (Next-Generation Firewall) by Palo Alto Networks.
 
 ms.custom: references_regions
 ms.topic: quickstart
 ms.date: 12/09/2024
 
 ---
 
-# QuickStart: Get started with Cloud NGFW by Palo Alto Networks - an Azure Native ISV Service resource
+# QuickStart: Get started with Cloud NGFW by Palo Alto Networks
 
-In this quickstart, you use the Azure Marketplace to find and create an instance of  **Cloud NGFW by Palo Alto Networks - an Azure Native ISV Service resource**.
+In this quickstart, you use Azure Marketplace to find and create an instance of  **Cloud NGFW by Palo Alto Networks - an Azure Native ISV Service resource**.
 
 ## Create a new Cloud NGFW by Palo Alto Networks resource
 
@@ -44,7 +44,7 @@ In this section, you see how create a Palo Alto Networks resource.
 
 ### Security Policy
 
-1. After setting the DNS values, select the **Next: Security Policy** to see the **Security Policies** tab. You can set the policies for the firewall using this tab.
+1. After setting the Domain Name System (DNS) values, select the **Next: Security Policy** to see the **Security Policies** tab. You can set the policies for the firewall using this tab.
 
    :::image type="content" source="media/palo-alto-create/palo-alto-rulestack.png" alt-text="Screenshot of the Rulestack in the Palo Alto Networks create experience.":::
 
@@ -105,7 +105,7 @@ Next, you must accept the Terms of Use for the new Palo Alto Networks resource.
 
 - [Manage the Palo Alto Networks resource](palo-alto-manage.md)
 
-- Get Started with Cloud Next-Generation Firewall by Palo Alto Networks - an Azure Native ISV Service on
+- Get Started with Cloud Next-Generation Firewall by Palo Alto Networks on
 
   > [!div class="nextstepaction"]
   > [Azure portal](https://portal.azure.com/#view/HubsExtension/BrowseResource/resourceType/PaloAltoNetworks.Cloudngfw%2Ffirewalls)
diff --git a/articles/partner-solutions/palo-alto/palo-alto-manage.md b/articles/partner-solutions/palo-alto/palo-alto-manage.md
@@ -1,10 +1,13 @@
 ---
-title: Manage Cloud NGFW by Palo Alto Networks resource through the Azure portal
-description: This article describes management functions for Cloud NGFW (Next-Generation Firewall) by Palo Alto Networks on the Azure portal. 
+title: Manage Cloud Next Generation Firewall (NGFW) by Palo Alto Networks resource through the Azure portal
+description: Manage your Cloud NGFW by Palo Alto Networks in Azure portal, including networking, NAT, rulestack settings, logging, Domain Name System (DNS) proxy configuration, and billing plan changes.
 
 ms.topic: conceptual
 ms.date: 12/09/2024
-
+ms.custom:
+  - ai-gen-docs-bap
+  - ai-gen-desc
+  - ai-seo-date:12/09/2024
 ---
 
 # Manage your Cloud NGFW by Palo Alto Networks through the portal
@@ -26,7 +29,7 @@ From the Resource menu, select your Cloud NGFW by Palo Alto Networks deployment.
 
 1. Select the **Type** by checking the **Virtual Network** or **Virtual WAN** options.
 
-1. You can see the  **Virtual Network** , **Private Subnet** and **Public Subnet** details.
+1. You can see the  **Virtual Network** , **Private Subnet**, and **Public Subnet** details.
 
 1. From **Source Network Address Translation (SNAT)**, you can select the **Enable Source NAT**.
 
@@ -87,7 +90,7 @@ After the account is deleted, logs are no longer sent to Cloud NGFW by Palo Alto
 
 - For help with troubleshooting, see [Troubleshooting Palo Alto integration with Azure](palo-alto-troubleshoot.md).
 
-- Get Started with Cloud Next-Generation Firewall by Palo Alto Networks - an Azure Native ISV Service on
+- Get Started with Cloud Next-Generation Firewall by Palo Alto Networks on
 
   > [!div class="nextstepaction"]
   > [Azure portal](https://portal.azure.com/#view/HubsExtension/BrowseResource/resourceType/PaloAltoNetworks.Cloudngfw%2Ffirewalls)
diff --git a/articles/partner-solutions/palo-alto/palo-alto-overview.md b/articles/partner-solutions/palo-alto/palo-alto-overview.md
@@ -1,23 +1,23 @@
 ---
-title: What is Cloud NGFW by Palo Alto Networks
-description: Learn about using Cloud NGFW (Next-Generation Firewall) by Palo Alto Networks from the Azure Marketplace.
+title: What is Cloud NGFW by Palo Alto Networks?
+description: Learn about using Cloud NGFW (Next-Generation Firewall) by Palo Alto Networks from Azure Marketplace.
 
 ms.topic: conceptual
-ms.date: 07/10/2023
+ms.date: 12/09/2024
 
 
 ---
 
-# What is Cloud NGFW by Palo Alto Networks - an Azure Native ISV Service?
+# What is Cloud NGFW by Palo Alto Networks?
 
 
-Azure Native ISV Services enable you to easily provision, manage, and tightly integrate independent software vendor (ISV) software and services on Azure. This Azure Native ISV Service is developed and managed by Microsoft and Palo Alto Networks.
+Azure Native ISV Services enable you to easily provision, manage, and tightly integrate independent software vendor (ISV) software and services on Azure. Microsoft and Palo Alto Networks developed this service and manage it together.
 
-You can find Cloud Next-Generation Firewall by Palo Alto Networks - an Azure Native ISV Service in the [Azure portal](https://portal.azure.com/#view/HubsExtension/BrowseResource/resourceType/PaloAltoNetworks.Cloudngfw%2Ffirewalls) or get it on [Azure Marketplace](https://azuremarketplace.microsoft.com/marketplace/apps/paloaltonetworks.pan_swfw_cloud_ngfw?tab=Overview).
+You can find Cloud Next-Generation Firewall by Palo Alto Networks in the [Azure portal](https://portal.azure.com/#view/HubsExtension/BrowseResource/resourceType/PaloAltoNetworks.Cloudngfw%2Ffirewalls) or get it on [Azure Marketplace](https://azuremarketplace.microsoft.com/marketplace/apps/paloaltonetworks.pan_swfw_cloud_ngfw?tab=Overview).
 
-Palo Alto Networks is leading provider of cloud security, offering next-generation cybersecurity to thousands of customers globally, across all sectors. With the integration of Cloud Next-Generation Firewall by Palo Alto for Azure into the Azure ecosystem we are delivering an integrated experience and empowering a growing ecosystem of developers and customers to help protect their organizations on Azure.
+Palo Alto Networks is leading provider of cloud security, offering next-generation cybersecurity to thousands of customers globally, across all sectors. The integration of Cloud Next-Generation Firewall by Palo Alto for Azure delivers an integrated experience while empowering developers to protect their organizations on Azure.
 
-The Palo Alto Networks offering in the Azure Marketplace allows you to manage the Cloud Next-Generation Firewall by Palo Alto Networks resources in the Azure portal as an integrated service. It enables you to easily utilize Palo Alto Networks best-in-class network security capabilities on Azure, and you can manage it using either Palo Alto Networks Panorama policy management solution or directly from the Azure portal. Cloud Next-Generation Firewall by Palo Alto - an Azure Native ISV Service combines the scalability and reliability of Microsoft Azure with Palo Alto Networks deep expertise in network security.
+The Palo Alto Networks offering in Azure Marketplace allows you to manage the Cloud Next-Generation Firewall by Palo Alto Networks resources in the Azure portal as an integrated service. It enables you to easily utilize Palo Alto Networks best-in-class network security capabilities on Azure, and you can manage it using either Palo Alto Networks Panorama policy management solution or directly from the Azure portal. Cloud Next-Generation Firewall by Palo Alto combines the scalability and reliability of Microsoft Azure with Palo Alto Networks deep expertise in network security.
 
 You can create and manage Palo Alto Networks resources through the Azure portal. You can set up the Cloud Next-Generation Firewall by Palo Alto Networks resources through a resource provider named `PaloAltoNetworks.Cloudngfw`. Palo Alto Networks owns and runs the software as a service (SaaS) application including the accounts created.
 
@@ -28,20 +28,19 @@ Here are the key capabilities provided by the Palo Alto integration:
 - **Single-Sign on to Palo Alto** - No separate sign-up needed from Palo Alto portal.
 - **Manage VNET and VWAN traffic** to use existing configuration (.conf) files for Palo Alto deployment.
 
-## Pre-requisites for Cloud NGFW by Palo Alto Networks
+## Prerequisites for Cloud NGFW by Palo Alto Networks
 
-- Subscription owner
-  - Cloud NGFW by Palo Alto Networks resource can only be set up by users who have Owner access on the Azure subscription. Ensure you have the appropriate Owner access before starting to set up this integration.
+Only users who have *Owner* access on the Azure subscription can set up Cloud NGFW by Palo Alto Networks. Ensure you have the appropriate Owner access before starting to set up this integration.
 
-## Find the Palo Alto Network offerings in the Azure Marketplace
+## Find the Palo Alto Network offerings in Azure Marketplace
 
-1. Navigate to the Azure Marketplace page.
+1. Navigate to Azure Marketplace page.
 
 1. Search for _Palo Alto_. Select **Cloud Next-Generation Firewall by Palo Alto**.
 
 1. In the Marketplace, you see the offer for **Cloud Next-Generation Firewall by Palo Alto Networks - an Azure Native ISV Service**. Select, **Subscribe**.
 
-   :::image type="content" source="media/palo-alto-overview/palo-alto-marketplace.png" alt-text="Screenshot of Cloud NGFW by Palo Alto Networks in the Azure Marketplace.":::
+   :::image type="content" source="media/palo-alto-overview/palo-alto-marketplace.png" alt-text="Screenshot of Cloud NGFW by Palo Alto Networks in Azure Marketplace.":::
 
 1. In the working pane, you see the options from Palo Alto Networks. Select **Create** in Cloud NGFW by Palo Alto Networks.
 
diff --git a/articles/partner-solutions/palo-alto/palo-alto-troubleshoot.md b/articles/partner-solutions/palo-alto/palo-alto-troubleshoot.md
@@ -3,21 +3,21 @@ title: Troubleshooting your Cloud NGFW by Palo Alto Networks
 description: This article provides information about getting support and troubleshooting a Cloud NGFW (Next-Generation Firewall) by Palo Alto Networks.
 
 ms.topic: conceptual
-ms.date: 10/18/2024
+ms.date: 12/09/2024
 
 ---
 
-# Troubleshooting Cloud Next-Generation Firewall by Palo Alto Networks - an Azure Native ISV Service
+# Troubleshooting Cloud Next-Generation Firewall by Palo Alto Networks
 
 You can get support for your Palo Alto deployment through a **New Support request**. The procedure for creating the request is here. In addition, you can find troubleshooting for problems you might experience in creating and using a Palo Alto deployment.
 
 ## Getting support  
 
 1. To contact support about a Cloud NGFW by Palo Alto Networks resource, select your Cloud NGFW by Palo Alto Networks resource in the Resource menu.
 
-1. Select the **New Support request** in Resource menu on the left.
+1. Select the **New Support request**, then **Raise a support ticket**.
 
-1. Select **Raise a support ticket** and fill out the details.
+1. Fill in the details for your support request.
 
 ## Troubleshooting
 
@@ -42,7 +42,7 @@ Only users who have Owner access can set up a Palo Alto resource on the Azure su
 
 - Learn about [managing your instance](palo-alto-manage.md) of Palo Alto.
 
-- Get Started with Cloud Next-Generation Firewall by Palo Alto Networks - an Azure Native ISV Service on
+- Get Started with Cloud Next-Generation Firewall by Palo Alto Networks on
 
   > [!div class="nextstepaction"]
   > [Azure portal](https://portal.azure.com/#view/HubsExtension/BrowseResource/resourceType/PaloAltoNetworks.Cloudngfw%2Ffirewalls)
