If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users.
In the past six
...
Is there any function that can makes the PA block the traffic of the real IP instead of CDN IPs?
We deployed the PA NGFW on the external side of our web server and enabled the Threat Prevention function. Because we are using the CDN, so from the web s
...
When the Threat log shows a vulnerability, is this an actual attack of this vulnerability or is this something that is using software that has this vulnerability?
Trying to determine when to act on the vulnerability (i.e. block).
If a critical level vu
...
hello everyone,
I think the title of my subject is explisite, I want to get Cisco Discovery Protocol (CDP) traffic through my palo alto, which is in virtual wire the problem is that frame cdp does not contain IP header so my the question is how to g
Hi,
My PA box keeps failing in commit and I get the attached message.
Could any one please help me decypher this, and let me know how I can
get this boy to commit to my terms !
Regards,
Tau_
Hello i have the below design
Internet Cloud ------------------> Cisco ASA -------VWire1----------->PA----------VWire1---------->Core Switch
PA ----------------------->SWitch----------------------- >WAN Router
PA
...
Hi,
I have a problem on a 5050. I am only able to view the last 6 hours of a threat map as soon as I select 12 hours, 6 hours ect it just hangs and nothing happens.
Does any one have a answer for this????
Regards
Dendre
Does anyone know why a Global Protect user would receive this error message? I have three users showing this error and I cannot seem to find out why. I had them uninstall and reinstall the GP app, making sure they had sufficient admin rights, and t
...
A customer asked the following about in reference to threat ID 34267, since there's not much in details in the PA Threat Vault DB.
Questions:
1. Will this signature trigger an alert for http-req-uri-path-length greater than 2000 with a GET qualifier
...
Ok. So, I'm running the 5.0.10 PAN. We are in the middle of a Polycom installation. Internal traffic within the polycom system is working fine (since no FW is in place). The problem is of course the outside users. We are using NAT for external stuff.
...
Hi,
Why is there a Maximum PAN-OS Version for some signatures? How can I tell if newer versions of PAN-OS can detect the same thing?
E.g. I saw this:
Is anyone out there doing any of the following? I didn't see specific applications for these types of things. Perhaps the only way to accomplish would be a custom application.
Hi,
is it possible to deploy User-Agent 6.0 and still using PAN-OS 5.0.5. I want to avoid to many changes at one time.
I didn't find a clue in the release notes. Thx
Cheer Klaus
Hello
The anti-virus signature is released on every day.
The application signature and other threat signature without anti-virus is released once a week.
So How is brightcloud url filtering database updating??
I don't know how make the schedule of url-fi
...
on:
PAN-PA-5220 Purchase
on:
sdwan interface down - recently upgraded to 10.1.6
on:
Session end reason=resources-unavailable, version 8.1.15.h3
on:
Admin credentials were not changing
on:
URL Filtering Wildard - ? in URL
