General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

The Enhanced LIVEcommunity Experience is finally here! Learn all about it.

Forum Posts

Registration now open - Interactive Event!

Hi everyone, If you haven’t already seen, registration is now open for our first interactive event all about the Best Practice Assessment (BPA) tool! You will be able to connect with subject matter experts, share best practices, and learn how this to...

jdelio by Community Team Member
  • 48 Views
  • 0 replies
  • 1 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 16756 Views
  • 45 replies
  • 32 Likes

Resolved! How do I identify which PC made a suspicious DNS query?

Hello I have setup the Anti-Spyware Profile in our firewall and I have a lot of threat logs of type spyware suspicious DNS queries from a domain controller machine and this is cleansed. Monitor > Logs > Threat list As you can see I have configured th...

sinkhole.jpg
SOC_CSG by L4 Transporter
  • 3160 Views
  • 3 replies
  • 0 Likes

Resolved! AWS Servers trigger Vulnerability

We are seeing a high number of HTTP Non RFC-Compliant Response Found Signature ID : 32880 CVE-2010-2561 All are logged from aws servers, evenly distributed across a large number of servers - 173 in one hour, each with 300-500 hits. I have packet capt...

djr by L3 Networker
  • 1990 Views
  • 2 replies
  • 1 Likes

Resolved! Zone Protection exception

Hello,We’ve a problem with one of our customer.Probably due to a carrier router misconfiguration, packets coming from - and only - a specific IP source are matched as fragmented by PA. As consequence, due to a Zone Protection and Fragmented Traffic p...

Question about threat logs - Type wildfire-virus

Hi all, just wondering why I see in our threat logs entries with the type wildfire-virus only for the application smtp... (I would like to post some screenshots, but I cant find the upload button?) What is the type wildfire-virus standing for? And wh...

Hithead by L4 Transporter
  • 2533 Views
  • 4 replies
  • 0 Likes