The security policy rule shown in the image is configured to permit traffic from a source zone LAN-
User-Zone to a destination zone Server-Zone. The applications allowed include tftp, ssl, and web-
browsing, and the action is allow. According to Iron Skillet day one configurations, which provide best
practice security profiles for immediate deployment, the relevant security profile group used to
secure internal traffic like this is the Internal profile group.
Iron Skillet provides predefined configuration templates including security profile groups like
Internal, External, and others to quickly secure traffic according to typical deployment scenarios.
Reference:
Palo Alto Networks - Iron Skillet Documentation: https://github.com/PaloAltoNetworks/iron-skillet
