Hi Team,
Is there any way to get a history of when NAT oversubscription dropped packets/sessions? Or can I only get realtime data on that?
Hello all,
Hope you are doing well.
Our customer who is using PA3220 experienced external public IP blockage due to abnormal symptoms traffic.
Upon investigation, it was found that a test Linux server installed internally attempted SSH brute force at
...
Model: PA450
OS: 10.1.8
ipsec-tunnel is working well.
The corresponding logs are continuously occurring.
I don't know if it's because of the tunnel monitoring option.
We are looking at creating a Honeypot Website. The idea is to set it up with a much more restricted vulnerability profile so when hackers are scanning for certain vulnerabilities in the low and informational category their IP is blocked. The question
...
Hi All, looking for some assistance to configure VPN failover for DR/BCP.
I've attached a basic diagram below
Currently, static route monitoring is set up on the outside interfaces of the firewalls at Site A, so if upstream from Site A ISP 1 fails Si
...
About automating and anticipating some possible blockages and denials using Dynamic Groups - Autotag can you support me and comment me with some use cases ?
Also, if
Hello,
I connect from home via Prisma to on-prem. I have a few domain controllers setup for pre-logon etc.
- what if my domain controllers were all offline or the firewall was offline
- can i have a domain controller in Azure
I have setup a site to
...
One of my customers is using PA-3020 and thinking about replace.
When I comparing following diagrams, I have one question.
PA-3020 has dedicated "signature matching", "security processing", and "network processing" as below
Compare to above, PA-
...
Hi,
I have 2 palo alto firewalls configured as active and passive. I want to know how I should configure the Interface IP address (for inside and Dmz) on the passive firewall? Do they have different IP address configured from the active firewall
...
Hello,
We have a customer with PA-850 running 10.0.8-h2 and they want to upgrade to latest.
As this firewall is placed in totally isolated environment and the customer wont allow to connect internet on firewall.
This firewall is in HA peer mode.
A
...
Hi,
We have an Active/ Active firewall between 2 datacenters. We have configured a single tunnel on a floating IP that is Active in Datacenter A to a remote Partner. Firewall in DC A is currently in Active Secondary State, Firewall in DC B is cu
...
Hi everyone, I'm new to network security and I'm wondering how I can stay informed about the latest security trends and vulnerabilities to better protect my network. Are there any particular resources you recommend, such as security newsletters, blog
...
We have two HA pair PA 5060 fw on PAN OS version 8.1.23, wherein the system logs, we see below OOM issue.
Device up time is 352 days.
SYSTEM ALERT : critical : Out of memory condition detected, kill process 8000
We have checked in the preferred
...
Hi Palo Alto support,
I would like to enquire the following questions pertaining our existing firewall.
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
