SMB: User Password Brute-force Attempt 40004

Hello all.  I have a PA-5020 operating as our Layer 3 router between all of our VLAN's.  For the past month or so the ACC on the Palo shows SMB: User Password Brute-force Attempt (ID:40004) as the #1 entry in Threat Prevention section.  The attacker

Is there a list of options / filters I can use in the Web GUI ?

Hi,

Is there a list, a document that would explain how I can use filters in the Web GUI ? I know how to apply simple filters by clicking on a field -> filter, but I would like to use more advanced features.

As exemples :

- (tag/member eq 'TEST') will li

brightcloud vs Paloalto URL DB

Hello,

I'm thinking to migrate from brightcloud to Paloalto URL DB since I had to request a lot of recatogorization.

Where can I find Categories list migration ? Does all categories match ?

To migrate is enought to follow this doc https://live.paloalton

Global Protect Client Error Message

Hello all,

I don't connect GP. GP client display error message.

It is 'An error occured int the secure channel'.

I use Window XP service pack 3.

Only this desktop doesn't connect GP.

Other desktop(window 7 , same account) connect.

Please let me know resolv

Is it possible to configure Agent User ID or Firewall or not to map a user?

Hello everyone,

I have a communication tool on each PC users that perform LDAP queries to my AD to retrieve information from other users.

This tool is using the same account (\ ccm), explain how to Palo Alto or rather the agent does not back this user

searching traffic logs are very slow on M-100

Hello

My customer use M-100 appliance.

M-100 CPU is not high.

But searching traffic logs are very slow.

M-100 OS is 5.0.2

How way do i check for logDB index?

I thing that logDB index has some problem.

Modifying application threat levels

Greetings,

I'm trying to sort out if there is a way in PAN OS 5 to either squelch known hosts from appearing in the ACC risk factor list (one is my web content filter, another set of hosts are my web load balancers) or reduce the risk factor for parti

Virtual-Wire Link Aggreagaion

Hello

I installed about virtual-wire link aggregation. (image1.png & image2.png)

all members of 'ae1' are ethernet 1/3 , 1/5 , 1/7.

all members of 'ae2' are ethernet 1/4 , 1/6 , 1/8.

all members of 'ae2' was disconnected when I had removed ethernet 1/3.

Troubleshooting Shotetel Communicator over GlobalProtect

I am wondering if anyone has successfully setup Shotetel Communicator (softphone) using the GlobalProtect VPN client?  I am working with a company who up until last week was successfully using the Shoretel Communicator through their Sonicwall's VPN c

Can anyone tell me how to get the botnet to display for a superreader?

We have a group that would like to review threats, including botnets... We have created accounts providing them superreader access but the botnet selection is not on the monitor screen...

I also tried creating an Admin Role giving them ReadOnly access