Networking

Hi Team,

We have a customer he is  using U – turn NAT. He is facing issue with DMZ server to client server.( i.e both are in same zone)

He is able to access from DMZ to DMZ only that particular IP. He is not able to access remaining IPs.

I have che

Antivirus Signatures

Anyone knows what this new threat is?

Name: Virus/Win32.WGeneric.ecphcy

Unique Threat ID: 610234284

Create Time: 2023-10-03 18:19:57 (UTC)

SHA256: 6bebb1b86738063e72821d2ee0018ff25e60859ec5a6093ad6d548f7e839cc62

Threat ID: 3185372

Current Release:

Monitoring Public Interface

Hi All,

We are managing the HA firewall over public facing interface. Now trying to Monitor the same interface by creating the Interface Mgmt Profile and allowing SNMP. But i can ping the interface SNMP polling is not working.

Is there anything else

SCEP Profile - Use as digital signature

When creating a certificate on the Palo Altos that we intend to use as the MGMT interfaces webserver, we arent getting issued the correct certificate and it appears that this is because Palo is not sending the digital signature argument in the CSR to

High availability when Dual-Homed to One ISP Through Multiple Local Routers

Hello,

I am looking for documentation on how to do dual home single ISP through multiple local routers in Palo Alto based on this cisco documentation here. I really appreciate if someone can shed some light on this.

Thank you.

Python Script For Interface ACL's, feedback

Wrote script to update interface ACL's in batch. User logs in to multiple firewalls, SSH conenctions saved in background, interface profiles are updated in a customized way per user input per firewall.

Here's the Github link to the program:

https:/

SMBv2 vs SMBv3 performance and application overrides

I know this has come up before and I've seen the article on disabling server response inspection but this hasn't helped me.

We have a blanket SMB override rule for Port 445 traffic that was originally due to a PAN-OS 8.1 bug that just never go addr

HA Panorama Active/Standby deployment - Read only access only to standby Panorama´s Server

Hi all, 

I have an environment with a lot of people wanting to get live traffic logs and policy rules for troubleshooting purposes, audit, etc., so we are thinking about to get all the read only admins connected only to the Standby web GUI and not

Using Regex in Cortex XDR XQL query

I want to extract a particular string from a particular field value from the Cortex XDR endpoint category and use it in XQL query. Is it possible to do that?

For example from the below string (it is a field )

arn:aws:ec2:eu-abcd-1:123456789:instance/

CE DoC ( Déclaration of Conformity) for PA 460 and 50 w DC Adapter

Hi Community,

I am looking for a document required by Customs relative to Europe countries.

Do you know how I can find the CE Declaration of Conformity for Palo Alto PA 460 and the 50w DC Adapter coming with ?

Thank you.

Global Protect 1.2.2-14 winhttpObj, error! ipaddress

Hi,

I keep getting this error when trying to connect with global protect, this pc is on the internal network. I should get the massage 'Connected Internal'...any ideas. I have included the log below and highlighted the line.

(T3776) 04/24/13 09:46:14:8

Support Portal Account unavailable

Hello,

Impossible for me to connect to support portal after creating my account.

Tried to contact support but it redirect me to support portal where i'm not authorized to access...

Any idea how to unblock it ?

Thx!

Sales Material for Clientele

Hi,

We are an MSP that is looking for Sales Material or training for Palo Alto. I am having a difficult time finding any of this material on Palo Alto itself, so wanted to see what, if any, the community has to share. Thanks!

Expedition question how to get firewall config from Panorama

How do I get just 1 firewall config out of Panorama. My panorama manages 100's of firewall's and I just want to export 1 firewall into Expedition so I can do some bulk changes. Then push it back via a partial push.

Regards

Jon