Custom signature not working as expected

Hi Guys

I have the follwoing issue:

I have a policy rule where I allow  smtp flow! On this rule I have a vulnerability protection profile. In this pofile I have 2 rules:

- one rule which is supposed to allow emails with bb.com in the subject

-the second

Identifying Mobile no - Data Pattern

Dear All,

Please find bellow our requirement:

1) We would like to restrict document going out from their network which has more than 5 mobile numbers.

Thus would require a regex of mobile no to be configured in Data Pattern.

We configure regex  -

((.*09

Application with Custom Signature & Layer 7 Processing

Hello All,

I have a PaloAlto PA-500 firewall on which I created my custom application based on custom signature. During the custom application creation on the Characterestics section I checked the "Continue scanning for other application" flag (refer

custom signature to reset php pages

Hi,

I have only CFM pages so I want to reset/block all traffic about PHP extension in my pages.

How can I implement this?

Greetings

To customize app-id or no

Hi

Newish user to PA's 1 year now I think.

I came from cisco - ip / port acl's

I am trying to move to app-id nicer easier policies.

So for office traffic I use app-id 

for my prod platform I use applicaiton overide to custom applications, so that I can

How to customize a special Cross-Site Scripting blocking signature?

How to customize a special Cross-Site Scripting blocking signature?

Cross-Site Scripting:

http://xxx.xxx.xxx/search~S5*cht/?searchtype=X&searcharg=1234&searchscope=5&sortdropdown=-&SORT=DZ&extended=0&SUBMIT=%E6%9F%A5%E8%A9%A2&searchlimits=%22%20oNmOuS

custom option for Email alert notification

Hi 

we have a PA 220 firewall configured with multiple ISP's, how to get an email alert if any ISP link up or down is it possible to configure 

Custom signature for IMAP

Hey there!

I need to create a custom application based on the LOGIN string sent to an IMAP server (Office 365) via port 993 (TLS/SSL encrypted) to differentiate it from other O365 traffic. Tech_Note-Creating_Custom_Signatures-RevE.pdf I should be abl

Lets Encrypt

Our customer is implementing the Lets Encrypt (https://letsencrypt.org/) in the whole his infrastructure. 

This way, every certificates SSL expired in 90 days.

The Palo Alto use certificate SSL to VPN, Captive Portal, and others services.

Is there an au

Custom App-ID for DNS-over-https

Hi community

As you may have noticed DNSSec is extremely slowly getting attention and it even does not improve the users privacy because the dns request are only signed but not encrypted. So other people and companies are searching alternatives to se

Custom Signature to Detect Weak Cipher Negotiation in Phase 1 ISAKMP Negotiation

Good Afternoon,

    Is it possible to create a custom threat signature or APP-ID to match various strings of data inside of the ISAKMP initial payload during the IPSec phase 1 negotiation. The first packets are sent in plaintext during the negotiation

How to submit changes to existing Add-id?

Hello.

We're noticed that webex app uses SIP connection over port 5061. I don't see it's listed in App-ID database and I believe it should be there. Please correct me if I'm wrong.

How do I submit App-ID change request? Since it's related to webex in

A few questions about signatures and custom apps

So I've had some issues with the most recent custom app I'm attempting to make.  Our server team is implementing Papercut on campus and there doesn't seem to be a pre-built app for it.  I submitted a request for it but figured I'd try to take a crack