CVE-2015-0235 Ghost

Just starting a thread for  CVE-2015-0235. Ghost

Anybody see any news from PA on this? I have not.

Cheers

tcpdump like packet capture on PA

how can check  dhcp packet on PA , for example using tcpdump -i Internal port 67 we see on unix/linux boxes.

how can we check same dhcp request and response packet on PA .

Blocking Teamviewer.

I am testing the ability to block teamviewer on my network. I have a rule that should block the application. In the traffic monitor, I can see the denies for "Teamviewer-base", but it does not prevent the application for being "ready to connect", nor

No URL-Log of HTTP/1.1 204 No Content

Hi,

The PA seems not to output a URL log when HTTP response code "HTTP/1.1 204 No Content".

On the traffic logs, the PA could classified the category of HTTP.

But there is no log related with the same Session ID.

According to the pcaps on the client PC,

t

Issues with Content Update 483-2549

FYI - Having major issues with last night's content update.  Inspection of traffic from our client environment to our domain controllers is causing significant logon/logoff delays.  I changed from an app rule to a traditional port/service rule (as ap

how to delete save configuration in palo alto before commit.

how to delete save configuration in palo alto before commit.

Monitor--Configuration --tap showing some changes. i would like to delete changes..do not want to commit.

How to active a License Palo Alto passive Firewall without Internet Access?

Hello,

I have a cluster firewalls Model PA-3020, PAN-OS 5.0.1. FW1 active/ FW2 passive.

I have already activated the license in the active FW1 over the Internet without any problems.

How to active License a Palo Alto passive Firewall without Internet?

T

Is anyone using the Aruba Clearpass device to identify user and machine name information?

Apple userid is not getting sent from the PA UserID agent to the PA500.  Since the Aruba Clearpass device is seeing all of that info and more I found a doc that would allow the Clearpass to send that data to PA.  Has anyone out there used this method

Managing Multiple Globalprotect Profiles

Any advice for managing multiple GlobalProtect connection profiles?  My colleagues and I connect to several different sites and haven't found a great way to track the client info for each site outside of a spreadsheet or password manager.

6.0.x - Stable?

We're on 5.0.15.  Can't say it does anything wrong but there's always a point at which you feel compelled to upgrade.

My rule of thumb has always been wait until the .07 release of any new PAN-OS - seems to be about when they're considered stable.

So w