EDNS0 Packet blocked

Hi,

We have internal DNS’s that send query EDNS packets and
those packets apparently are blocked by our Firewall (PA-3050 IOS Version
5.0.2)

I didn’t find any doc or discussion here about this issue

Could someone help me to allow those packets pass throug

Strange Log/Report Request

This idea might be a little strange so I apologize if it isn't completely clear.

Currently, we get a daily PDF report from our PAs that include items like the top 5 egress interfaces, threats, etc. Our security team has been interested in these report

TeamSpeak 3.x not recognized by App-ID

TeamSpeak is a voice app that uses a proprietary VoIP protocol. The 3.x version of TeamSpeak was no longer recognized by its existing App-ID, so I've captured some packets and submitted it to TAC for an update. This updated app-ID is targeted for rel

How to integrate PA syslog with Algosec ?

I am struggling with Algosec regarding the ability to forward syslog data with the right format.

Traffic is hitting the Algosec server but is is not parsing any PA Traffic log data.

Because the format and content in the traffic log is customisable I wo

PA incorrectly matching rule, lets C&C traffic out

One of our other IDS tools detected C&C traffic outbound.  After further investigation, this traffic was allowed out through the Palo Alto because it matched on a rule that should have allowed ONLY the App-ID "github".  The App-IDs that the PA was de

WiFi with 802.1x and Radius authentication - source user in traffic log problem

Hello

I'm thinking about WiFi network for my studnets. Now they are authenticating on HotSpot on Mikrotik AP's. They are complaining that must enter login and password so often.

HotSpot also isn't good for me becase I can't see authenticated users in P

How to access console port on pan-2020 using a dial up modem

I have a single remote firewall (pa-2020) where I would like to set up the console port to be accessible via dialup modem.  I called Paloalto support and they only were able to say that most people use a terminal server like an avocent type server to

yeoogh.com

seeing an excessive amount of traffic being tagged Suspicious DNS query (virus.virut:yeoogh.com) canno find any reference to this anywhere, ideas?

Cisco Ironport with Palo Alto FW

We have a tenant who is going to terminate their internet service and begin to use our connection.  Their internet traffic will be directed to our Palo Alto, which is our internet gateway.  The tenant also uses a Cisco Ironport Web Security device an

Problem: Management Session Getting Hang Frequently

Hello All,

The below model appliance Management Session gets hanged frequently

Firewall Model: Palo Alto PA-5050

PAN OS Version: 5.0.3

iPad browser scrolling issue

I want to manage my PAN from my iPad however, I'm running into scrolling issues. Anyone been successful with the iPad browser?

High Management CPU

Hi

Since upgrading a PA-2050 to 5.0.8 I noticed that the management CPU is always above 70% and DataPlane is under 5%. Do this behaviour is normal? Management CPU sometimes goes to 99%.

Best regards

Gonzalo Arroyo

Script to switch on/off captive portal by script

Hi,

I'm still interested in finding a solution to manage my PA500 captive portal feature to switch on and off during certain times of the day.  I have heard in another setting that one can switch captive portal on and off from a script.  Which command