Analysis and control of protocol running in SSH like SFTP

Hi,

Any ideas on better controlling what gets transferred over a decrypted (by the Palo Alto's ssh decryption feature) SSH session.

I don't see an option blocking file up- or downloads via the fileblocking feature for SSH or an other corresponding pr

session end threat

I had a user that was not able to connect through a mapped drive to one of our servers. Looked in the monitor and it said session end reasson threat but it didn't identify anything about the threat not cve no ID information

Blocking EXE files but allowing file names

Hi guys,

I'm trying to block .exe files, but allow file names for some users.

For example, I would like to allow the GoToMeetingLauncher.exe for GoToMeeting webinars, but the links look like the below which means it can't be done. 

https://download.c

PA-200 Slow browsing with url filtering

Hi,

a couple of questions on the matter:

- to get URL reports i need URL Filter on the rule to be on . Is this correct? Or can i have url reports without that enabled?

- with a PA200 with 1 computer connected, with URL fitler when i enter the website,

True test to verify dns sinkhole configuration is correct

 Hi Team, 

We recently had a support case where a user followed all the guides on the kb and found that the sinkhole feature appeared to be not working. After a few quick tests we determined they had configured it correctly. The issue was the domain

Cannot loggin with my own personal account

Are there more people having trouble login in to websites of Palo Alto.

I pass my PCNSE 7 today, but login in the palo Alto Live community website, no way.

The company I work is parner, but we not owning PA firewall our self, juist managing the PA's o

Url Filtering Doesnt Works (not-resolved)

We faced with problem in URL filtering. While trying to open any site PA returns blocked mesage and url category : unknown.

This is the output from CLI :

test url nasa.gov

nasa.gov not-resolved (Base db) expires in 0 seconds
nasa.gov government (Cloud d

Failed to determine issuer

Hi guys,

I have a certificate that I need renewing as it's expired, but I am seeing "failed to determine issuer" when attempting to do this.

The certificate is a self-signed certificate, but it wasn't generated on the Palo, but rather an external CA.

Redistribute Route to GlobalProtect with BGP

Background:

We have a 172.20.0.0/16 internal network that is connected to our Amazon AWS VPC. A route is successfully advertized to our AWS peer using BGP and from the local network I can reach our server instances in the VPC. AWS resources are assign

Exporting information under "managed device" Panorama

The data presented in " managed devce tab " under Panorama is very useful for reporting ike

" all updtes happened" ( I want to know if all dynmaic updated hapened for all firewalls) 
"active/passive"( I want to know if any failover happened) 
System reb

Can a IPSec tunnel entry be used by muliple connections

Hi, We have a number of (25+ ) remote 4G modems, that we wish to have VPN'd into our network. The modems can do L2TP/IPSec, IPSec, PPTP. Each modem has a WAN interface which is dynamic and a LAN interface with either one or two devices connected to i...