How to custom a DNS query and block it ?

There has Dynamic Block Lists to block unwanted IPs.

And there has DNS signature in Anti Spyware profile.

Above are all helpful to block malicious sites.

And if I found a bad dns query, is there any way to create custom dns block lists?

Possible to edit 600 already created security policies in bulk to add virus/spyware/url profiles?

I was hoping not to have to edit each rule separately. Does anyone know a way to do this?

PanGP- Connection verification

Hey guys,

Anyone has had this issue with GP?

The PanGP virtual NIC is making a "connection verification" for "ages" and nothing happens.

I have made a workaround to solve this problem but would like to know what is the reason for it.

Of 100 clients, I ha

User loses privileges...UserID

In our company we have two internet browsing profiles.
Users who belong to the AD Domain users have limited access to internet and users AD group belongs to UsuariosInternet can access anywhere.

My AD user is canopr and I have internet access from my P

URL Filtering 4183 blocking Yahoo Mail as Phishing ?

Anyone else getting this ? Obviously a false positive. I have to say the URL filtering database leaves a lot to be desired.

Cleaning obsolete firewall rules

Hi all,

We have recently migrated from Juniper to Palo Alto firewall and there are numerous firewall rules that are obsolete and potentially a security risk to me. I tried to use "highlight unused rules" button but it does not seem consistent to me. A

What's the difference between custom URL filtering in security policy and in URL filtering Security Profile?

Hello, Guys, I have one question.

First below is the packet flow from "Packet Flow.pdf" document. According to this document ...

In the red square, before PA make session table, it checks packet's ip and port (like the legacy L4 firewall), and then aft

Globalprotect msi

Hello

Is there a difference between the Globalprotect msi files you can download from the software support site and the Globalprotect msi files you can download from your own Globalprotect portal ?

The reason why I ask: I'm testing deployment of the GP

App-ID updates break existing rules

Howdy,

How do most of you manage situations where App-ID updates break functioning rules?  This just happened to me: I have Lync 2010 and the internal clients need to connect to the edge server.  I had a rule in place that allowed ms-lync, ssl, and st

My PAN-2020 Network port are not working any idea?

The Status let is in orange, the console port is working but none of the network ports work. Any suggestions?

Cisco VPN Client and PAN NAT

This is an obscure problem.

I've got visitors from another company on our network trying to VPN back to their office with Cisco's VPN client to a Cisco ASA appliance.  They are unable to connect, randomly.  Most of the time, at least one can connect,

GP Portal Config

We need to create multiple GP portals mapped to the same physical interface on the box . We have setup the first one but we can't select that same interface to setup the second portal . How do we setup multiple portals on the same physical interface