Multiple PA-200 Firewall's lock up and require a reboot in order to function.

I have 24 PA-200 firewalls.  They are running on PanOS 6.1.3.  At random times the firewall will lock up and requires the device to be power cycled to restore connectivity.  I have called Palo Alto support and them connect to one of the devices that

New to Palo Alto

Hi all

I am a firewall engineer and I am completely new to Palo Alto firewalls. Would any of you be able to recommend any training, certification I should start with?

Thank you in advance. 

M

cve-2009-3555

Hello

When scanning management interface or enabled https layer3  interface it shows the related vulnerability,

is there a way to fix.version is 6.1.10

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3555”

thanks.

Custom DNS name

We have a DNS name genieo that is not being recognized and is not included in the signatures. Two things first is there a way to identify it with a custome signature with the object/anti-spyware  and then be able to send it to a sinkhole?

Related with QoS...

Hi,

I'm trying to understand a QoS functionality, let's see if anyone can help on this case.

I have a webserver on a DMZ and want to asure 15Mb from inside to outside, that is, in case of congestion in DMZ, priorize the Http traffic (respond http reque...

FTP connections jumping rule

Hi,

we have 2 rules. the first one filtering by application FTP 

and the second one with the same source/destination like the rule above and using any/any permit.

We run ftp connections. all these FTP connections should match in the first rule fi

Policy for AD authentication across zones

Trying to narrow it down and determine the minimum set of applications/services that need to be allowed for a user to login into a Windows 7 client in one zone and authenticate against a Server 2008R2 AD Domain Controller in a different zone? The Win

MDM GP-100-MDM(vsys1): details: certificate chain has expired

We are receving this alert for the certificate expiration

we have configured MDM with one of trusted root certificate (this got expired and we renewed that recently)

MDM---->created with root-CA certificate

certificate:

--root-CA (this was expire

Port 4443

It has been noted that our global protect portal is reachable from the internet using port 4443 and is presenting a self signed cert which is seen as a security vulnerability. Can you let me know if port 4443 is necessary in terms of GlobalProtect co

What file type in the file blocking profile can be uploaded to wildfire?

Hi,

I would like to don't upload email-link to wildfire cloud.

Usually I choosed "any" for file types in file blocking profile.

But I have to check each file types for except "email-link".

What file type I should choose?

Currentlly, there are 81

UAC & GlobalProtect

Hi All!

I am having an issue with globalprotect updater and UAC. It seems that when GP wants to update to a newer version it uninstalls fine, but then my users get a UAC prompt when it wants to update. Because they are not admin accounts the update

Palo Alto Training Partner

Hello Community,

We're thinking of becoming a Palo Alto Training Partner. Can someone please let know the process in becoming a training and partner and any links.

Regards

Manage users connected to wire from layer 3

Hello i need for you help.

The client has device connected in virtual wire mode and wants to configure another interface on the device that will connect to your LAN where their servers are and can see users who connect to the virtual wire mode.

T