https://security.paloaltonetworks.com/CVE-2026-0227 I'm writing this because I don't understand. Is 11.2.6 a vulnerability?Thank you for your reply.
A false positive has been detected for HelpDeskViewer.exe. File Hash: <c08193adcefec15716fb0c76566e834677563636caf65151d7c9447392d28264> Link to Virustotal report for the file: <https://www.virustotal.com/gui/file/c08193adcefec15716fb0c76566e834677563636caf65151d7c9447392d28264/details> Current VirustTotal Verdict: <Generic.ml&...
We have been experiencing an intermittent problem with our nightly predefined reports displaying IPv4 addresses in IPv6 format.An IPv4 address like 192.168.1.1 is being displayed as an IPv6 address like ::0101:a8c0:ffff:0 We are currently running PAN-OS 11.1.13 but we have seen this same behavior under 11.1.12. Behavior like this apparently ha...
Why do the same Windows Server 2022 std (Traditional Chinese) data collected using XDRC and WEC agents show different statuses in the following fields? _Collector_type = `WEC` ,Event Log display is 【`English`】,Fields have 【Message】、【 _RAW_LOG】。 _Collector_type = `XDR Collector` ,Event Log display is 【`Traditional Chinese`】,Fields Only have 【Mes...
What is the Palo Alto recommended standard for Vulnerabilty Profiles, is it to block Critical and High Alerts? or to block medium alerts as well?
Access to my Palo Alto server is managed by an LDAP user and a local administrator account.After updating the filtering rule used by LDAP and committing to candidate configuration, I can no longer access my Palo Alto server from either the LDAP account or the local administrator account.How can I fix this?
Hi , i would like to seek clarification clarification regarding a threat detection observed on our Palo Alto firewall, which we believe may be a false positive. During our review of the threat log, we noticed that the detection from below source and destination via port 18264 references several filenames as win.ini, fake.cgi, note.txt, jhjr60x...
I did not activate my MFA, and now the link is not working. any idea what to do ?
I would like to seek a verification and clarification regarding a threat detection observed on our Palo Alto firewall, which we believe may be a false positive. During our review of the threat log, we noticed that the detection from below source and destination via port 18264 references several filenames as win.ini, fake.cgi, note.txt, jhjr60x8....
I'm using Global Protect to connect to the server. When I open YouTube to watch videos or run a speed test, I always receive an RST packet or a zero window message from the server. Then the client disconnects from the VPN. I want to know what's causing this? I will show the tcp dump in attach.
I am deploying GlobalProtect and have configured the Gateway Agent Client Settings with the following Source User in the Config Selection Criteria: connect\vpnusers I am a member of this group. The group is retrieved from our internal LDAP server via User Identification → Group Mapping, with the following attributes configured: Primary Usernam...
Hi expert, If we do not have Prisma Access China license, but still want to connect China mainland mobile users to closed MU-SPN overseas, say Japan pop. If this will be blocked by Greate FW, and if it is, if any workaround. Also, can connect to the overseas SC and then send traffic to Prisma Access Cloud ? If can do that, how to achieve it. ...
Having some strange behavior with GP client 6.3.3-711 that runs within the prisma access product. When user is on network, or in office, gp changes gateways at times and changes the timezone of the client computer. The client doesn't have issues off network like at coffee shop or home. Not sure what's going on. I am not using any internal host d...
Hi team I am looking for a Prefered version for IONS devices Can anybody helps me? Regards
Does adding legit windows binary hash to the allow list increase load on the XDR agent?
