General Topics

Vulnerability Protection profile alters APP-ID behavior

Hello everybody,

  while writing some articles on our company wiki, I found a strange behavior of the firewall. This is my environment:

PA model: PA-820

PAN-OS version: 10.1.8

APP/Threat version: 8653-7756

Decryption: SSL inbound enabled

I have

How to get AV definition of multiple machines at one go

Hi Team, 

I'm checking one incident where I got multiple machine names. Now I want to check AV details of all the machines at one go. I'm using "sep-endpoints-info" automation to get those details. It is working fine when the input is only one mach

Error: Unable to invoke scripts/commit-p1.py for dlp

Hi everyone, 

I had an error when commit the change in Palo Alto firewall. How can I resolve that problem?

My PA firewall uses IOS 10.2.2.h1

reverse proxy key 'abc.com' doesn't match certificate issued to 'abc.com'

How do I find from the firewall which backend server is not matching the certificate/key here. Alert doesn't give much information. We have about 20 servers behind with inbound decryption.

Global protect route issue with macbook

Background information

Where I’m currently living right now in a apartment complex there is a central internet network that I do not have access to these devices(Ubiquity). Lately I’ve been working a lot from home and sometimes I need to connect throu

Cannot ping interface, IP or defaul gateway from PA 500 to Cisco switch

Hi all , 

I set up PA 500 to connect to Cisco layer 3 switch. I cannot ping any website or the IP  from PA 500 except the Ip address assigned from Comcast. I look on the NAT, security and virtual routing but nothing wrong. 

1. I plug my comcast rou

How to Uninstall Cortex with disabling anti-tampering protection

Hi All,

Anyone can help how to uninstall Cortex XDR with disabling anti-tampering protection?I am trying to uninstall from SCCM and due to the anti-tampering protection, it require password to disable the protection first before i can proceed with

Customer support registration issue

Hi, 

I am using Palo Alto PA 820 device and I want to register the same for customer support but asking me to contact support. 

Risky For Use Public IP as Private IP Security Concerned

Hi Expert ,

Please help to clarify that about risky for use Public IP as Private IP on Local Network due to we have plan to cut off the new network and existing network we use subnet like public subnet  we would like to defend that to change it abo

Panorama AWS Plugin details?

Anyone have some good info/links as to what exactly the Panorama Plugin for AWS does?   I've read a bit about it's attempt to automate, and monitor, but is there a good document that lays out exactly what this plugin does, and how you can use it to b

GP Captive portal Detection Trigger Desktop Alert?

What specifically triggers GP to throw a desktop alert regarding captive portal?   Is it only a "302 redirect" back from a responder, OR- does it include a microsoft test that triggers something on the microsoft endpoint as well, OR - is it a combina

Certificate issue for Random website on Random Times

Hi Team,

We are intermittently experiencing Certificate issue while accessing some random website in Random times.

We have created Certificate in Firewall only for the purpose of Global Protect VPN and apart from that we haven't created any certificat