SDWAN Rouitng

2 ISP circuits added as SDWAN links

You can not 0.0.0.0 / 0.0.0.0 route with the same metric of 10

This one is Metric 10 one is metric 15.

How do you use both circuits?

Commit scope is unavailable when a full commit is required

Hi Team,

Let's see if you can help me with this behavior,

In Panorama 9.1.9 the following message is displayed when trying to commit: "Commit scope is unavailable when a full commit is required"

I see that there is pending configuration to push th

MS-ISAC TAXII Feeds

Is anyone successfully consuming TAXII feeds from MS-ISAC, specifically, their feeds from taxii-pilot.cisecurity.org? The miner shows success and there are log entries for indicators, but there are no indicators in the counters or graphs.

Wildfire submission

Hi Guys,

how does Wildfire logs work?

Thanks.

Google meet/ hangout Stun servers aged-out

We have noticed an issue especially with Google Meet/Hangout when we often get one way audio.

I can see from the traffic logs that Stun servers are showing aged out and the application is stun. However it is using a non standard port 19303

I susp

Capture Portal 403 error

Hey Live Community,

I'm working on a project to have two zones on a vwire (one trust, and one lab).  In order to get to the lab zone from the trust zone, I've created rules to only allow authenticated users to go through, and I've created my capture p

How to disable cortex xdr on home computer

Hi, cortex xdr was instaled on my computer and now i dont have acces to my network, i tried everything but i cant disable cortex.

can somebody help me to disable and uninstall this program?

How can I delete my account on Live community?

Hi! I would like to delete my account from Live community cause I used the wrong email account, what can I do for delete this account?

How to identify long live session(s) ?

Hello,

I am trying to identify those long live sessions on my firewall,  I mean those session(s) that never ended for weeks at a time.

This is what I found out so far.

1.  I can't export the whole session log to perform offline analysis,

2,  I did not

Reverse Proxy

Can the PaloAlto do reverse proxy like ISA can?

If I have an internal web server hosting multiple sites how do I publish that through the PaloAlto?

CRL with no internet

Hello,

I have a 440 with no internet access. I could not find documentation on the proper way to update the CRL when my firewall does have access to the internet. Thanks for any help that I might be able to get with this. 

Network blocking and detecting capabilities in case of similar abnormal symptoms traffic

Hello all,

Hope you are doing well.

Our customer who is using PA3220 experienced external public IP blockage due to abnormal symptoms traffic.

Upon investigation, it was found that a test Linux server installed internally attempted SSH brute force at

VPN Monitoring "tunel-status-down[up]"

Model: PA450

OS: 10.1.8

ipsec-tunnel is working well.

The corresponding logs are continuously occurring.

I don't know if it's because of the tunnel monitoring option.