https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26488#M19334 <HTML><HEAD></HEAD><BODY><P>Hi</P><P></P><P>If I'm not mistaken there hasn't been any update regarding bittorrent these past few weeks. I tried relaying this to PAN but what we did was just take the other app that bittorrent uses and put it on the block list. that way we are able to control bittorrent again.</P><P></P><P></P><P>thanks..</P></BODY></HTML> Fri, 08 Nov 2013 04:54:34 GMT HartkentlyNua 2013-11-08T04:54:34Z https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26484#M19330 <HTML><HEAD></HEAD><BODY><P>Hello Guys,</P><P></P><P>Have anyone of you noticed something regarding torrent(bittorrent, transmission..etc..)?</P><P>We received a report that a torrent app which is<STRONG> transmission</STRONG> is able to evade the app detection of Palo Alto NGFW.</P><P>I tested it in my lab, I use Bittorrent and I saw that it can really breach Palo Alto NGFW and successfully downloaded a file.</P><P>We traced the logs and sessions, we noticed that these torrent is using other app such as teredo, unknown-tcp, and unknown-udp.</P><P>I don't know if this has happened before but its new to me. We are expecting that if we block bittorrent, we dont have to block other apps, Isn't that how it should work?</P><P></P><P>Thank you.</P><P></P><P>Regards,</P><P>Hartkently</P></BODY></HTML> Thu, 07 Nov 2013 08:16:57 GMT https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26484#M19330 HartkentlyNua 2013-11-07T08:16:57Z https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26485#M19331 <HTML><HEAD></HEAD><BODY><P>Hello Harkently,</P><P></P><P>What content version is your PAN firewall running on ?</P><P></P><P></P><P></P><P>Regards,</P><P>Kunal Adak</P></BODY></HTML> Thu, 07 Nov 2013 16:27:25 GMT https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26485#M19331 kadak 2013-11-07T16:27:25Z https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26486#M19332 <HTML><HEAD></HEAD><BODY><P>Hello Torrent,</P><P></P><P>If the application was not identified properly there are couple things which may have happened</P><P>&gt; The application would have changed their signature which is not updated on PAN apps content yet</P><P>&gt; There may be an issue in identifying the app because bittorent opens predict session and tries to map the child sessions as the traffic flows.</P><P></P><P>For any further clear analysis it would be nice to take flow basics and packet captures to understand what was the traffic and how the PAN analysed the apps to narrow down the issue.</P><P></P><P>Thanks</P></BODY></HTML> Fri, 08 Nov 2013 00:39:08 GMT https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26486#M19332 Phoenix 2013-11-08T00:39:08Z https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26487#M19333 <HTML><HEAD></HEAD><BODY><P>Hi Kunal,</P><P></P><P>currently the content version is 404-2015, I believed that is the latest update..</P><P></P><P>Thanks.</P><P></P><P>Regards,</P><P>Hartkently</P></BODY></HTML> Fri, 08 Nov 2013 04:52:43 GMT https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26487#M19333 HartkentlyNua 2013-11-08T04:52:43Z https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26488#M19334 <HTML><HEAD></HEAD><BODY><P>Hi</P><P></P><P>If I'm not mistaken there hasn't been any update regarding bittorrent these past few weeks. I tried relaying this to PAN but what we did was just take the other app that bittorrent uses and put it on the block list. that way we are able to control bittorrent again.</P><P></P><P></P><P>thanks..</P></BODY></HTML> Fri, 08 Nov 2013 04:54:34 GMT https://live.paloaltonetworks.com/t5/general-topics/torrent/m-p/26488#M19334 HartkentlyNua 2013-11-08T04:54:34Z