vsys and subscriptions

If I add a subscription (say, URL Filtering) to the root vsys--do the other (non-root) vsys receive that capability as well?

I'm not finding that answer in the docs so far....

Thanks in advance,

JRP

security policy rule with URL filtering fails to trigger on targeted traffic

I am trying to make a rule hit on a custom URL filtering profile with HTTP header insertion for postman traffic to be allowed, so I created a URL filtering profile with a custom URL category in order to allow the specific URL ( /upload/ subdirectory

GP Hip notification Panorama blank?

When I try to populate the drop down for HIP notifications on the gateway, it comes up blank.  All firewalls are panorama managed, but for whatever reason, I can't get this box (while on panorama) to populate with any of the current HIP profiles/obje

Problem With Panorama Pushed Update 10.1.5

Since when is 'citrix-f5' not an allowed keyword.

Add new portal to Linux GlobalProtect app

Hi,

I'm trying to set up two different VPN relying on two different accounts on the same Linux (Linux Mint 20.2 Uma, base: Ubuntu 20.04 focal), but I'm having some issues.

From what I understood (as the VPN rely on different emails) I need to create di

unable to block downloads Command-Line Download Accelerator

Hello,

I created a file download profile which allows only download rpm,bzip2,gzip and blocked rest. When I use wget iso file download blocked. When I use "axel" iso file download not blocked. What is the difference and how can I completely restrict

How to create SMTP alert using O365 Authenticated User

Dear All

I would like to check for PANOS 9.1.X, how do I configure the SMTP alert with O365 authenticated user. I had tried the steps in this URL "Configure Email Alerts (paloaltonetworks.com)" and unable to trigger the SMTP alert out.

The purpose of

LetsEncrypt SSL & Forward Trust Certificate option Grayout

I have installed LetsEncrypt's Root, Intermediate and Certificate with Private Key on firewall. For some reason all options are grayout. I used Certbot to generate certificate. How I can resolve this?

Anybody try to block Invidious yet?

The students in our school district have discovered that Invidious sites (https://invidious.io ) are able to circumvent the Youtube content blocking we had in place with our Google Chromebooks.  Has anybody else experienced this yet and/or discovered

Actualizar Paloalto PA-2020

Need to upload palo alto PA-2020 of version.

it have version 6

how i can do it and what version i can upload

Port to Port latency stats

I am trying to find out what the typical port to port latency is of the 800 and 3200 devices.  I appreciate that this probably changes depending on what inspections are running, and configuration, but I am after a ball park figure for standard L2/L3

SSL/TLS Client-Initiated Renegotiation Vulnerability in NGFW LAN Int

Hi, 

One of our runs vulnerability  Assessment on LAN Interface of the PA NGFW, And they are getting SSL/TLS Client-Initiated Renegotiation vulnerability, Please help me to remediate the same. 

Security Report

I would like to create and export a security report giving me a simple count on the number of times an attack was attempted.
The definition of an "attack" could range anywhere from a network discovery to a tentative of password brute-force, as many ve