Traffic with "any" category allowed on policies rule

Hello,

I have a rule where we allow the category social-networking.

Why in traffic log I see traffic allowed with category any  !!

No Wireless ?

It looks like none of PA has wireless (nothing on PA-200 or PA-500) , am I correct ? It's very disappoining

Portal Status Connection initializing

I'm using LSVPN, after rebooting my satellite I can see Portal Status Connection initializing  (Network->IPsec Tunnels->Gateway Info) But nothing happens, in the capture I don't even see actual traffic to portal even if I try to reconnect manually. P

Windows DNS Server behind PA

Did a PA install last night, the client had a public facing DNS server. the DNS server had a public IP before we moved it behind PA to nat it. while it was outside firewall with public IP the DNS queries from internet worked fine without any issues.

Wildfire options

Hey guys,

As I'm sure most of us are, I'm seeing a huge string of issues related to Cryptolocker lately.

I've reviewed the several articles floating around on how Palo Alto units deal with this, the fact is I'm seeing spam emails get through encouragin

DNS TXT records, use and implications of blocking?

In the recent past my organization was hit with a relatively new DNS Amplification attack which uses a botnet hosting DNS services with a specifically crafted DNS TXT record.  The spoofed requests specifically requested this record hosted on the botn

ssh (or any) threshold?

I'm experiencing a ton of hits over ssh to servers that must have ssh access. Is there a way to do threat assessment based on SSH,  port etc – and then automatically shut the attack down?  For example if a certain IP begins sending all that traffic o

Regin detection

Hi All,

I understand that this bit of spyware is not well understood as to it's ultimate purpose, very hard to detect and in fact, with the media converge it has had recently I am sure whoever coded this nasty has since changed it's code/behavior.

But

Automatic backup - Palo Alto

I would like to know how to perform automatic backup of Palo Alto and automatically copy every morning for a server backup.Can you help me?

best regards,

Paul Aun

Can I get a entries of Unused Rules with no repeat count from Custom Report?

Hi guys,

I have question about PaloAlto Custom Report. I can find that document for getting used rules with counter from customer report as How to Create Custom Report to Show The Least Used Rules in Security Policies

But Customer want to know exactly

Palo alto captive portal not display on google chrome

Hi,

I'm having problem with our Palo Alto PA-500 do not display captive portal on google chrome.

however if open use other browser it can display the portal.

Do anyone know how to fix it?

Because it just happen last one week, previously we do not have pr

Virus/WIn32.WGeneric.drhsj

Hey folks,

I need the CVE for this, anyone else experienced this threat?

Thanks