General Topics

0day padding oracle exploit on PAN-OS master key decryption?

Ran across this and am wondering if this is truly a new 0 Day or related to a previous RCE from a little while back regarding the default Master Key? https://twitter.com/rqu50/status/1554566757704089600 There is proof of concept code for this.

Resolved! Always on GP Using Local CA for Prelogin and SAML Auth

I am building and always on VPN with Prelogin (both windows and MAC) and SAML authentication. Everything works as expected with PC computers. With the MAC computers, we see the Prelogin connection, Then it is supposed to switch to user authentication

...

office365 uploading App-ID not recognized error

Dear Team,

There is a symptom that the office365 application is not recognized correctly.

For example, if you connect to the office WEB (office.com) and create powerpoint and word documents, they are recognized as 'ms-powerpoint-online' and 'ms-s

...

PA in Azure intermittent connection

Hi,

Newbie here for Palo Alto and thanks in advance for any help/comments. We have a customer who has a PA-220 on-prem for their internet and PA in Azure for their cloud app server. Internet is working fine in their on-prem and has a Site-to-Site v

...

Palo Alto - Barracuda IPsec VPN problems

We've a IPsec-VPN IKEv2 between Palo Alto (10.0.7) and Barracuda (8.0.5-0341) with 10 IPsec tunnels, one VPN-tunnel per subnet-pair, on Palo side "proxy IDs".

At least once every day, some of these ipsec-tunnels go down and can only be forced to come

...

Resolved! Web interface not working

Hi

About 2-3 month ago, my ability to edit tags for ip addresses or any object doesn't work. the tag field compacts to 0pixel height !

I have attached a screen shot you can see the item has tags, but when you open it up the tag field is collapsed w

...

Resolved! Deploy firewall rule using set commands or xml from panorama.

Hi,

i would like to know if there an option to deploy a firewall rule using "set commands" and send to firewall through Panorama.

Or there are some option to deploy a firewall rule using a simple xml script from Panorama?

Thanks,

João Victor

Resolved! Best practice to upgrade PAN-OS 6.1 to 8.1

Hello,

Could you please let me know the best practice to upgrading two PaloAlto FW (Ative - Passive) with HA.

PAN-OS 6.1.5 to 8.1.6

Appricate your feedback

Thanks

Resolved! PAN-DB URL Categorization - Server Error (500)

Hi,

I an trying to make a change request for a URL on the support page.
I can fill in all fields, but when I press send, a server error (500 ) is shown.

https://urlfiltering.paloaltonetworks.com/

Am I doing something wrong?
This has worked before.

...

Resolved! Web-gui access with no secure certificate.

I access via GUI from Chrome and observe that the connection is not secure.

I created the certificate for the firewall, but Chrome keeps saying that my connection is not secure.

How can I solve this problem if the AC I have is internal to the company?

I

...

Firewall idmgr High Availability State Showing difference

I have configure a RMA replacement HA device by following below guide

How to Configure a High Availability Replacement Device - Knowledge Base - Palo Alto Networks

I follow until step 10 need to use below command to check the state

debug device-ser...

Migration / Import of configuration only to a destination vsys, a particular vsys

Migration / Import of configuration only to a destination Vsys, a particular vsys.

Hello good afternoon, as always thank you very much for the support and collaboration as always. Please your your suggestions, advice and / or guidance, how is it po

...

Resolved! Unable to Deactivate PA - VM license through Panorama

Accidentally, while terminating PA VM in hosted in AWS, the license was not removed from the firewall.

I am trying to deactivate the license through panorama but it is giving us an error.

Also clicking on Complete manually gives us the same error as

...

PAN platnium support

I have Platnium support with PAN and I opened a TAC case yesterday evening explicitly requesting TAC support Monday-Friday between 8am-5pm US EST. The case went to APAC TAC and he said that he is looking into the issue. I sent me an email to tell h

...

Split Tunneling Teams traffic - Video ONLY

I know we can split tunnel Teams traffic, but is it possible to drill down further and split the Video calls ONLY and keep regular traffic within teams to go over the VPN ?

Discussions

0day padding oracle exploit on PAN-OS master key decryption?

Resolved! Always on GP Using Local CA for Prelogin and SAML Auth

office365 uploading App-ID not recognized error

PA in Azure intermittent connection

Palo Alto - Barracuda IPsec VPN problems

Resolved! Web interface not working

Resolved! Deploy firewall rule using set commands or xml from panorama.

Resolved! Best practice to upgrade PAN-OS 6.1 to 8.1

Resolved! PAN-DB URL Categorization - Server Error (500)

Resolved! Web-gui access with no secure certificate.

Firewall idmgr High Availability State Showing difference

Migration / Import of configuration only to a destination vsys, a particular vsys

Resolved! Unable to Deactivate PA - VM license through Panorama

PAN platnium support

Split Tunneling Teams traffic - Video ONLY

B2B VPN IKEv2 Fail with Amazon Private Cloud Peer

Help understanding Asymmetric Path issue

Can't import a certificate via XML API using C#

Unable to download new version

Edit personal information

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

CVE-2024-3400 IOC's

Re: Solution for "SSL decryption bypass for Anydesk"

Re: Failed to update content package

Re: Solution for "SSL decryption bypass for Anydesk"

Unlock your full community experience!

Resolved! Always on GP Using Local CA for Prelogin and SAML Auth

Resolved! Web interface not working

Resolved! Deploy firewall rule using set commands or xml from panorama.

Resolved! Best practice to upgrade PAN-OS 6.1 to 8.1

Resolved! PAN-DB URL Categorization - Server Error (500)

Resolved! Web-gui access with no secure certificate.

Resolved! Unable to Deactivate PA - VM license through Panorama