Hi Guys,
My company bought a PA firewall a few months back. At that time we had around 85 users and PA technical person suggested that it will handle up to 100 users in our environment. Now, we have around 70 more people who joined our company, so tot
...
Hi,
HTTP SQL Injection Attempt threat id: 35823. we have exempted this threat id but it is blocking the traffic.
on the traffic log, the session end reason is showing threat and in the threat log, it is showing reset-both.
Want to know why it is sti
...
Hi,
If we try to update apps on a iPhone they don’t update but if we remove the security profiles the apps update with no issues.
When you click update it attempts to do the download and just fails
We are using following security profiles(image attach
...
Facing PPPoE session disconnection issue.
As per ISP, this is a Firewall issue as from Laptop or Computer (directly connected to ISP Router) no disconnection being observed.
Palo Alto PA-3020
Following logs and capture packet are below
2021-07-15 11:2
...
Hi!
Has anybody made a rule that filters the traffic by HTTP/S protocol no matter what the port is?
what I mean is for the FW to detect a client trying to access https://randomwebsite:X where X can be any port from 1-65535
running ver 9.1.8
Good afternoon, currently for sending and receiving mails with Office 365 is using a Cisco CES ( Cisco Email Security ).
This device only has a couple of public IPs, it is external to the organization.
In Palo Alto, when configuring the SMTP Gateway.
...
Hello,
I am rather new to the Palo Alto FWs, and I am looking to replace 2 existing PA3020's in an HA pair with two PA3220 also in an HA pair. I've never done a full swap like this so is there any Best Practice recommendations and/or upgrade checklis
Hello Live Community,
We want to create a template "base_config" which will program all PANs with the same User-ID, Group Mapping, configurations.
Part of that would be defining the all PAN's Serial numbers as Data Redistribution agents.
So my question
...
Hey guys,
I just wanted to let you know that I have just blogged about "What is SSL Decryption" and wanted to call your attention to it.
Please read it here if you have not already seen it:
https://live.paloaltonetworks.com/t5/blogs/what-is-ssl-dec
...
Dear Team,
Iam facing the issue with Wildfire and continuously received this alert every minute.
2021-07-11 10:40:51.821 +0300 check wildfire license: valid license
2021-07-11 10:41:07.268 +0300 Error: pan_fbd_cloud_post_upload_file(pan_fbd_fwd.c:4939
Hi folks,
When I perform a nmap port scan on my IP range protected by Palo Alto Firewall, almost every port responded to SYN scan.
This is a known issue, as I found:
Port scan report shows all TCP ports are open
https://knowledgebase.paloaltonetworks.c
...
I'm testing (starting) my ethical hack skills and testing our GlobalProtect Gateways for vulnerabilities.
I used the Windows ike-probe and Kali Linux ike-scan against a Cisco gateway with VPN services running. The ike-scan results are what I expected
...
Site-to-Site VPN with PPPoE
Good afternoon, please help me to confirm if the following scenarios are compatible or not.
- Palo Alto with Interface in DHCP mode ( with private IP - Typical example ADLS modem delivering a Private IP ) establish a sit
...
Dear community!
We are having some traffic issues when globalprotect and F5-Edge client run together. When established a VPN with both clients at the same time, there´s some traffic not properly routed through the the GP virtual interface, the same t
...
Good afternoon, first of all, thank you very much for your support.
I have the following scenario, and I ask for your support so you can help me to validate if its configuration is feasible:
- Palo Alto ---Interface on Palo Alto WAN type PPPoE ( with
...
SteveCantwell
on:
'Persistency - 779040014' alerts detected by XDR Agent , 'Persistency - 779040014' alerts prevented by XDR Agent
TomYoung
on:
Data Filtering License
BPry
on:
Palo blocks on login step
SteveCantwell
on:
problem to folder pancfg
