Threat ID 33803 MHTML vulnerability

New to Palo Alto. Just got an alert for threat ID 33803, Microsoft Windows MHTML Protocol Handle Cross Domain Scripting Vulnerability. I looked at the packet capture, and all I see is a href specifying an mhtml URL. Is the PaloAlto signature just mat

3.1.8 vs 4.0.1

So now that 3.1.8 is out after 4.0.1, does it mean that the issues 3.1.8 addresses from the 3.1.7 release are still present in the 4.0.1 release? Or are these completely separate branches with their very own "issues"?

Threat ID 250175 Trojan-clicker/Js.Agent.baxdn

I can't find any information about this virus. Google search turns up nothing. With nothing to go on, I'm not sure how to respond to this threat. I'm reluctant to track down the machine and dive into analyzing it without having more information about

Microsoft Lync and PAN App-ID

Hi all,

I need your help

I'm sorry to talk about security and microsoft products :smileylaugh:

Do you know if Palo Alto supports ( or plan to do it ) microsoft Lync protocols ? It seems they are using some kind of SIP and RTP protocols but with some ve

Purge Logs

Hi,

Does anyone know how to purge logs of PA2020? My drive is getting full and I need to delete logs to free up some space.

Thanks,

Rex

Some questions relate to mail exchange

Hi All,

I'm having a trouble about test public a mail exchange server when making POC for my customer, I have configured nat and set policies for some applications such as : smtp, pop3, imap, ms-exchange, ssl, web-browsing But when testing outside to

SSL website and other issues.

Good morning, I am new to a company and a palo alto box (2020 running 3.1.7) was implemented before I started.  Ive been playing around with the firewall and we have been having several issues so bare with me.  Example of an issue we are experiencing

After upgrade to OS 4.0.1, can we still use back UIA 3.1.x and SSL VPN Client 3.1.x?

Hi All,

After upgrade to OS 4.0.1, can we still use back LDAP 3.1.x and SSL VPN 3.1.x?

Because the web site didnt release UIA or SVC for PAN OS 4.0.1... Anyone encounter this issue?

UDP Conversations for VOIP

Hi All;

I have an outside VOIP server running H323.  The phones internally use a keep-alive mecahnism over UDP 5000 as a destination and varying source ports. 

The server on the untrust side of the firewall will send the same keep-alives in response.

Convincing Domain Admins to cooperate with PAN User-ID Agent

If the security organization would like to use Palo Alto Networks firewall features for tracking user behavior in a more meaningful way, that alone should be enough to get cooperation from all Domain Admins. PAN User-ID Agent should be given an accou