Hi we have a requirement to upgrade a 5020 HA pair from 6.0.5-h3 to 6.1.15. Can I confirm that 6.1.0 is the only interim release needed? thanks
We get a bunch of threat alerts from a single source IP from time to time, like someone running a script on or scanning a specific host for vulnerabilities. Some traffic is allowed through to the host. Does anyone know of a way to put an IP in a time-out when they appear to be doing something like this? My thought would be if a host on the inter...
MineMeld Guru's,Any advice on why Miners aren't downloading indicators is much appreciated. Here's where I'm at...-Running version 0.9.30-System tab says everything is running-Nodes claim they are connected but haven't pulled in any additional indicators-I stood up the VM last week and it initially pulled in 909 indicators but hasn't changed sin...
I would like to be able to assign a different RISK rating on the same app, say RDP.If RDP is seen on the management zone I would rate that as a RISK 2, however if seen on the Internal zone I would rate that as RISK 5. Does anyone know a way to do this short of having different firewalls for each zone?
I have removed a lot of rules and am down to 400 rules, I am up to OS 7.0.10 and upgrade the OS every other monthIn the las couple months the PA seems to be getting slow and not as quit to commit changes or to pull up the dashboard when I first login. Any ideas where to look for possbile issues?
Does anyone have a rough idea of how much traps runs per endpoint. We run roughly 800 laptops and desktops that this would be deployed to but I'd like to get a rough idea of pricing to determine if this is something that management would actually try to push through and I should spend the time looking into. Thanks!
Figured this out the hard way. If you create a custom BFD profile in Active / Active HA mode, the BFD profile names need to be unique to each device. If you try to configure a BFD profile with the same name on both devices, BFD will not come up. If you do try to configure a BFD profile with the same BFD profile name and you make and commit c...
My users in the past few weeks have not been able to navigate to any Google sites through Google Chrome. It started out to be one person and now every day I am getting new users. This is only occurring at my Corporate office and the only thing in common is the Palo Alto. The error they receive is ERR_CONNECTION_CLOSED. It just says the site...
I am trying to get inbound SSL decryption for our web server. I imported our web server's SSL certificate with private key to the Palo. It shows "Valid" and the "private key" checkbox is checked. But the log shows it is not getting decrypted, and I'm seeing the session end "decrypt-unsupport-param" . The certificate is signed by a CA, 2048-bit, ...
Hello, My firewall is able to pull several feeds from our minemeld server. However, it is not pulling our Low and Medium Confidence inbound feeds. Worked with PA support and they said there must be something wrong with our Minemeld server and suggested I post a question here. thanks!
Hi, We have several computers in our network using this proxy: proxy1.eu.webscanningservice.comThis domain changes IP each 15-20minutes. So when this domain changes the Ip we can reach the proxy from our computers.So i have several doubts:1)PA detects when a domain changes the IP and update the FQDN database?? or only FQDN refresh is done each 3...
Can Gen1 and Gen 2 NPC cards =be nixed in 1 7050 chassis w/o any issues with software ro addtl hardware upgrades?
Morning, I was wondering if someone could help me. We have the palo intergation enabled and the results are rather interesting. If I check a device that is a iOS Device in Aruba I can see IP, user assiocated to the device and so on. If I put that same IP into Palo I have the IP Address listed with no user ID assigned.Now if I check a device that...
Hi I have made security policy on Paloalto as per port base requirment. eg.I have allowed http, https, dns as a service. But i also want ping to be allowed in the same policy. Please advice how can achive this. Samir.
hi, We have a cluster PA-2020 with PanOS 5.0.16. I just looed into EoS version, and this version doest have support since last november. Please, can we upgrade this PA to any higher version??? which is the recommend for this PA-2020?? we dont want to lose performace going higher.
