Resolved! How Palo alto APP ID functions to identify applications when it receives encrypted traffic ?
I would like to know how APP ID works when Palo alto firewall receives encrypted traffic but no ssl decryption is enabled.
Discussions
Problems to upgrade the OS.
Using the http portal I´m trying to download the OS version.
I have installed the 9.0.5 version and trying to reach 10.1.10 h1. the problem is when I press check now to see the OS versions availables, does not appears nothing new, and in don´t t
...
Trying to block a computers ip address to social media in a security policy rule
I am adding the source ip address that is a computers address to deny social media on that computer using a security policy. I have tried to block my own computers ip address and was unsuccessful. Please help!
questions to advanced url filtering
Hi all,
I renewed licenses and bought the new adv url subscription which is already activated in my customer portal. However, my firewall still has the legacy url license active.
1) Do I need to import the adv url license manually? What happens to th
...Resolved! Auto-commit failing: interfaces down, not able to force commit
We are struggling with the following error and Palo Alto TAC is not able to provide the proper support, they are just asking us to do an RMA or to factory reset, but the truth is that we are having the same issue in 2 different firewall clusters with
...
Auto-commit after upgrade to 10.0.0 fails
Hi all,
After upgrading a PA-220 from 9.1.13 to 10.0.0 Data plane is not coming up as auto-commit keeps failing. The only info i got so far is as shown:
I have downgraded the PA back to 9.1.13 and the auto commit is successfull after reboot. However w
...
Upgrade 9.1.0 to 10.0.0 PA220
Hello, im experiencing issues with upgradeing my PA220 from 9.1.x to 10.0.0.
The new software installs, but autocommit fails after upgrade.
So i figured i had something in my config that is either changed or not supported in 10.0.0, so i wiped my box
...UI issues in PAN OS 10.1.5-h1
Hi All,
I seem to have run into some minor UI bugs in PAN OS 10.1.5-h1:
1. When you open a security policy rule, the tags section is squashed and you cant re-size it or click the drop down (see below)
2. When you click on the contextual help in the W
...
PAN-OS 10.1.5-h1 no Wildfire Submissions logs in WebGUI
Wildfire Submission logs are not loaded in WebGUI. I only see the rotating progress circle in the upper right corner.
In CLI the Wildfire logs are visible
>show log wildfire
Resolved! HA failover if Running Config is not synced
If on Active Passive PA both shows running config not sync
Say failover happens for somereason or we trigger the manual failover bgy suspending the active PA will then
Passive PA becomes active and start passing the traffic even though running c
...Suggestions for Splunk Search/Report
I have several Splunk searches that I use as indicator lists. Has someone already built a miner/prototype to retrieve these?
The generic API examples don't seem sufficient for Splunk's two-step routine (search then retrieve results).
https://doc
...Cannot create custom region
Running 10.1.6-h3 and in Panorama I go to objects, regions and click add but it won't let me add an IP Address. We only allow US traffic using a deny policy for anything other than the US and I have a need to add a single IP address in another count
...10.1.6 HA running Config not synchronized - PA 850
Hi All,
I have two standalone FWs in HA. There running config was working fine but for sometime it's not synchronized and I can see below on the dash board. Need your expert suggestion to resolve this.
- disk space is below 80 % on both FWs
- ran >r
...
Resolved! "Decrypted" column in exported CSV of Traffic log?
When viewing the Traffic Log in the GUI, there is a column for "Decrypted" (yes/no).
However when I export the Traffic Log to a CSV, I don't see a column with the same or a similar name.
How would I identify which connections were decrypted by look
...Resolved! Sort columns in Monitor tab?
I feel like an idiot, but how do I sort the columns in my monitor tab? The used to be sorted by generate time, but that doesn't seem to be the case anymore.
- ChrisDean on: I have a Premium Account but can figure out how to open a trouble ticket... the Portal Changed PLEASE HELP... So frustrating...
-
aleksandar.astardzhiev on: Palo HA with LACP to Cisco Stack Switch -
aleksandar.asta
rdzhiev on: Certificates not appearing in XML running configuration - DixonR on: Best practice for Active/Passive HA and OSPF
- Alin.Scarlat on: Creating a rule
- Mick.Ball on: Strange behaviour via Palo Alto Firewall.
-
BPry
on:
how to block facebook and instagram on mobile
- Alin.Scarlat on: Limiting Access to Office365 only
- Alin.Scarlat on: LACP betweeb PA3400 and Cisco Switch
- nabin.sutradhar on: PA440 not shuting down instead getting rebooted after sometime .
Copyright 2007 - 2023 - Palo Alto Networks