A Decade of Showing Up Greetings Everyone! Over the last ten years, this community has becom...
Simplify your AliCloud network security architecture by integrating VM-Series with the Alibaba Cloud...
In this episode of Threat Vector, We dive into a nostalgic yet revealing journey through classic ...
Explore why monitoring the Terraform ecosystem (registry, providers, APIs) is essential in orchestra...
The Cloud-Delivered Security Service Edge: The Monthly Newsletter for Security That Never Sleeps ...
AI Canvas is your no-code platform for data exploration in Strata Cloud Manager. This essential guid...
In this episode of Threat Vector, host David Moulton, Senior Director of Thought Leadership for U...
In this episode of Threat Vector, host David Moulton, Senior Director of Thought Leadership for U...
AI traffic surged $\text{300\%}$, making the broad "Artificial Intelligence" URL category obsolete a...
Hello - Any idea on how to troubleshoot this? Device Telemetry Statistics:device-health-performance: last-attempt: Fri Oct 6 13:29:13 UTC 2023last-success: Fri Oct 6 12:19:14 UTC 2023num-of-failed-attempts: 2reason: Hostname/url is in illegal/bad formatstatus: failedproduct-usage: last-attempt: Fri Oct 6 13:29:13 UTC 2023last-success: Fri Oct ...
Hello guru, it seems both served the same purpose to me. all i would like to ingest the event logs for analystic purpose. except the configuration nature, like WEC required AD config and XDR collector need an agent installed. what is the pros and cons for for WEC and XDR collector? any use case for each? thanks SdG
Hi, I would like to understand if my FW is capable of the below using QOS: - I am using PA-1410 in HA pair - I have 1 ISP internet link with 50Mbps bandwidth connected to eth1/1 - I have a requirement to create a guest network using the same ISP link and assign 10Mbps out of 50Mbps. So. using the same outside interface (eth1/1) I want to res...
We have configured a custom report for Interface Bandwidth and scheduled it for daily email delivery. However, we are not receiving the reports via email or seeing them triggered. The SMTP configuration test is successful, and we are not able view the reports under Monitor > Reports. Whenever we try to pull the report manually from the cus...
Hi Experts, I was unable to find detailed information in the manufacturer's documentation or knowledge base, so please advise. ・If a communication is permitted by the firewall's security policy, is it possible for the firewall to send FIN or RST packets to that communication (client or server)?・Does the firewall ever send FIN or RST packets ...
Hello, I have a working GP configuration that uses client certificate, username and password for authentication, with the username and password validated using PEAP-MSCHAPv2 against a RADIUS server. I want to add an OTP challenge as described at https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm8ICAS, for the on demand ...
We just replaced our active-passive PA-850s with PA-445s and have run into an issue when we failover the firewalls. On failover, all the data-plane interfaces on the new active node go down for 20 seconds before coming back up. This is dropping every active connection through the firewall. We did not see this behavior on the PA-850s (failover...
Hi Community.Every time when GP connects it sets its interfcaceMetric to 1. However, I have a nested VPN with even higher priority so every time I have to manually change the PANGP interface metric to a higher value e.g. 400. My wired connection already has metric 8500. Do you know if there's a setting for that?
Hi. We want to restrict users to modify or add portals in Global Protect. We still want the users to be able to change between existent portals. Is there a way to do this? *Disabling advanced view does not work for this
For Cortex XSOAR 6.X On-premises deployment, in server deployment / system requirements describes that IPv4 IP forwarding is required (System Requirements • Cortex XSOAR Administrator Guide • Palo Alto Networks documentation portal ). Security team is questioning if there is other possibility to deploy XSOAR by not enabling IPv4 IP Forwarding or...
Hi I have aquestion for Prisma cloud's API access key. Quoted from docs, when generating access key, it's tied to current login user's Role. https://docs.prismacloud.io/en/enterprise-edition/content-collections/administration/create-access-keys I tried some test to see if it works. I made a role that do not have access to view, update, delete a...
Please update MITRE Techniques available in BIOC creation menu for Cortex XDR V3.16 Missing MITRE techniques in BIOC module: T1204.004 - User Execution: Malicious Copy and Paste - https://attack.mitre.org/techniques/T1204/004/ T1204.005 - User Execution: Malicious Library - https://attack.mitre.org/techniques/T1204/005/ I am sure these aren'...
Hello, This past week I've started seeing traffic that's classified as Tunneling:isavscan.[tld] (threat type: dns-c2, ThreatID: 109001001) hitting our Outside intrazone rule where the source and destination are our public ARIN IPs (the rule is currently set to allow while I make sure I have all the traffic we need like BGP and IPSec allowed in o...
FileHash: b1ef3582cd461327d9a93d210c7d503ece186ce6a86d3105355da45c5a208b62 Link to VirusTotal report for the file:https://www.virustotal.com/gui/file/7c0feaf9231ced1629c167e08a9bc997f01452ceab72e38fb180c3fbfd9d3bd6 Current VirusTotal Verdict: Generic.ml
- Let me know reason why “PanPUAC_xxx.dat” does not work (auto create or renew, failed to open), after Windows Update, BIOS Update. - Let me know workaround. -pan_gp_event.log Ex) -Failed to open file C:\xxx\Palo Alto Networks\GlobalProtect\PanPUAC_xxx.dat -Portal status is User authentication failed -Retry connect failed first time Best reg...
Co-authored by: Chintan Udeshi, Principal Product Manager We are excited to announce that Palo Alto Networks has introduced AliCloud Gateway Load Balancer (GWLB) support for VM-Series firewalls, enabl...
This blog was written by Sabitha Muppuri (Sr Staff Site Reliability Engineer) The Critical Need for Vendor Tool Health Monitoring in Orchestration Environments In today's highly orchestrated and autos...
The Cloud-Delivered Security Service Edge: The Monthly Newsletter for Security That Never Sleeps Welcome to the November 2025 edition of the Cloud-Delivered Security Services (CDSS) Newsletter The Clo...
A Decade of Showing Up Greetings Everyone! Over the last ten years, this community has become a place people rely on every day. Whether they’re troubleshooting something urgent, sharing hard-earned ex...
