Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Across a large environment, what would be the best way to audit Palo administrator accounts? That is accounts found at Device > Administrators.
For various reasons we all end up with lots of AD accounts, service accounts and so on there, what I'd li
...
Hi Guys,
I noticed some strange logs on one of our 5200 firewalls.
There is device behind the firewall that is running constant ping to google dns, traffic is allowed and working normally.
I noticed a some logs that bytes sent is zero... I can explain
...
Dear All, Psiphon was blocked for a long time but this week, we detect it has been working again. i have tried to block it again but without any result, it was blocked for 2 hours and working again after that. I have been checking the tr
UserID Agent version 9.0.5-8
Firewall 9.0.8
Windows Server 2016 UserID Agent Servers x2
I've tried following this guide and numerous others (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGFCA0)
Keep getting 'Failed to vali
...
We would like to add a miner to input nodes in our Minemeld portal.
And we followed the below article to setup as per our requirement but we couldn’t see the “git” icon to add the extensions.
https://live.paloaltonetworks.com/t5/minemeld-articles/send-
Am trying to create an app id that identifies a particular pattern that only be 10 characters long and must be alphanumeric, had tried various syntax but seems not to be accepted as a correct pattern with the message that the expression is not at le
...
I have tested multicast to be working and is configured as in this diagram. In the logs I see traffic from SERVER zone to Multicast zone. But there is no log on INTERNAL client that accessed the multicast stream.
I've been beating my head against the wall over the past week trying to get an instance of Minemeld to work on both Ubuntu Server 16.04 as well as within a Docker container running on Ubuntu Server 20.04 LTS.
I've followed the below guides verbatim
...
Hi All,
Has anyone had problems with CAPWAP AP's separated from the WLC by a PA-220 firewall get stuck in a DISCOVERY OperationState?
>show capwap client rcb
AdminState : ADMIN_ENABLED
OperationState : DISCOVERY
Name : ***
SwVer : 8.5.151.0
HwVer : 1.0.0.
Hi,
we're running into an issue with IPv6 NPTv6 which we use to route traffic through IPS on PA.
The address isn't translated as expected.
We tried NPTv6 in 2 configurations, both translate the same. We either used:
xxxx:xxxx:xxxx:ffe0::/60 -> xxxx:xxxx:
...
Hello To All,
I will create a short summary about how to do basic checks if the palo alto drops or slows down the traffic.
1. First the pcap capture on the drop stage will show if the firewall drops the traffic and after that we check why the firew
...
1. What is the interval for HIP reports that the GP client sends to the gateway?
2. Is it configurable?
3. What triggers HIP report sending?
Hello All,
Just wanted to post this in case anyone else ran into it. Microsoft release patches as they normally do, however there is one that might break user-id, June 8, 2021—KB5003671 (Monthly Rollup). There is a warning in the notes:
After inst
...
BPry
on:
Making a dataplane interface behaves as a management interface
Raido_Rattameis
