The existing DNS servers and LDAP server is reachable by the management interface. The additional set of DNS servers and LDAP server setup will have t

Hi Team,

The existing DNS servers and LDAP server is reachable by the management interface. The additional set of DNS servers and LDAP server setup will have to access via an interface other than the management interface.

Could someone please ass

APP-ID: Xunlei TCP 33221

Hello, has anyone encountered this application "xunlei" appearing in the traffic logs using destination port TCP 33221? This port is also used by Cortex XDR. Wondering if this is malicious or benign. Appreciate your comments. Thank you.

Custom App-ID for Tinder

Good morning all,

We have had a situation occur where students and teachers are 'liking' each other on the Tinder dating application (www.gotinder.com), bit of a strange one but surprisingly looking on our PAN the firewall doesn't recognise it as an a

Merging two Palos Config

Hello everyone

I have two Palo PA-850s with software version 10.2.2 that are running in different locations. To merge all the services to one location, I must merge two Palos configurations from ACLs, NATs, and Interfaces to a single device (or the H

SCP Import returns Server error : Failed to import logdb

When exporting logdb file using SCP  to different linux machines there would be no errors but when importing the same file we receive the error: Server error : Failed to import logdb, the files would list during importing but the error would appear n

shadowed rules not showing in cli commit

I need get the shadowed rules name list and remove them, my firewall OS version is 10.1.11, the shadowed rule warning is not there any more in commit, is there a switch on command to show this warning?

Packet Buffer Protection Configuration

Is there something misconfigured with my packet buffer protection or is BPA and AI-Ops just flagging it incorrectly?

Configure Packet Buffer Protection (paloaltonetworks.com)

RedHat IPA authentication on Palo Alto

Hi,

When using RedHat or CentOS IPA authentication on Palo Alto firewall, we may ran into challenges when adding LDAP Server Profile and GP Clients functionality related issues.

1. LDAP Server Profile - On a traditional RedHat or CentOS IPA server there

Palo Alto Firewall - Exporting Log Database via FTP/SCP is not working

Hello All,

We are currently doing a POC with Palo Alto firewall in a customer network.

The POC got successfully completed. But while exporting the log database from the appliance we are hitting we issues.

After checking the admin guides, found the lo

Update of Default Trusted Certificate Authorities?

I am just curious - in which way is the list of trusted certificate authorities (WebUI: Device > Certificate Management > Certificates Default Trusted Certificate Authorites) updated? By firmware update or by dynamic update?

Regards,

Sylvia

PSE software firewall associate

Dear all, 

I need your help to find my exam question, I am really confussed some question about PSE software firewall associate. Please help me to find right answer. 

1. What is the preferred way to analyze traffic logs generated from multiple data c

Api to disable specific policy