Admin account - Minimum Password Complexity - Firewall - Panorama

Admin account - Minimum Password Complexity - Firewall - Panorama Hello good evening, as always, thanks for the time and for the collaboration. In the "Device / Setup / Minimum Password Complexity" section, the settings made there, including password length, password forcing time, etc. These settings are also applied to the default account (...

Palo Alto Updates Detected as a Threat

Hello all, im using content update app and threat 8628-7631 and antivirus 4233-4746 on this day. is there any url database update on app and threat 8628-7631 and antivirus 4233-4746? i have a problem on firewall palo alto, that firewall detected palo alto updates as a threat. the management traffic is traverse the firewall. i have policy to a...

Help Explaining Interface Counters

I have a couple of ports on different PA's showing various interface errors. Just looking for some help deciphering and find a solution for the interface. PA-7000 series running PAN-OS 9.1.13. Output for the "show counter interface" command is below for each interface. Thanks!! Interface: ethernet2/7------------------------------------------...

Devices managed through Panorama - Unable to export entire device config

Hi, When I have a firewall managed through Panorama, I am unable to figure out a way to export the devices complete config file in xml. I have tried Export Panorama and devices config bundle but I only get a few basic settings in the XML. No policies, or Interface settings. Even when I log into a PA manually and export the config I only ge...

Skype Stun Not Allowed due to incorrect UDP Port in APP-ID

Hi, One of my customers is having an issue where by Skype is not being allowed through despite the Stun and RTP applications being allowed through: Previously we'd used the 'skype' and 'skype-probe' but this was not matching with the traffic. Looking through the traffic logs the traffic is being denied because Stun is running on a high level po...

Credential agent crashes LSASS

Setup a 2016 RODC so I could use the Credential Agent.As soon as I try starting the agent as system, the server pops a message that I will be force restarted in 1 minute. It non-gracefully reboots in 1 minute. I tried agent v10 and v9. Perms and settings appear fine afaik, and suppressing a/v didn't help. Palo sent me a suggestion to roll back p...

What is cyber security?

HA - Path-monitoring - VLAN-TAG-Vwire environment

HA - Path-monitoring - VLAN-TAG-Vwire environmentHello good afternoon, as always thanks for the support and for the good will as always, it is much appreciated. I have the following question: Environment detail: HA firewall, Vwire, with Vlan Tags by subinterfaces of a portchannel ( Ae1 ). Is it possible to apply some kind of Path monitoring,...

Common Criteria EAL4+ with AVA_VAN.5 / Advanced methodical vulnerability analysis

#AVA_VAN.5 #CommonCriteria ##AdvancedMemethodicalVulnerabilityAnalysi I'd like to know if the newer firewalls with PAN-OS 10.X are AVA_VAN.5 certified regarding common criteria Advanced methodicalvulnerability analysis? Other vendors disclose e.g. EAL4+ with AVA_VAN.5. Found nothing at: https://www.paloaltonetworks.com/legal-notices/trust-cen...

Comitt problem via panorama to PA 3020 giving Error: Non digit

Operation Commit All Status Completed Hello,I have the following problem rodo the comitt in the panorama but not applying in the box giving the following error: Result Failed Details vsys1 Error: Non digit (Module: device) Commit failed

I can't change password for Active Directory in VPN with Client Palo Alto (Global Protect 6.0.3), PAN-OS 10.2.2-h2 and RADUS Server Windows 2019.

Hello for all, I'm with problem in Palo Alto Firewall Model 3260 with PAN-OS 10.2.2-h2. One week ago, I had a Firewall with PAN-OS 10.0.8-h4 and in this version I change my password of Active Directory in VPN with Global Protect (Global Protect 6.0, 6.0.3, etc....), but now! I have a Firewall with PAN-OS 10.2.2-h2, and in this version a can´t ...

PALO ALTO CORTEX vs MCAfee Antivirus (AV)

Can you help us in differentiate between PALO ALTO CORTEX vs McAfee Antivirus (AV)

USER ID Lateral Movement reported

We have USER-ID Agent installed on 2 Domain Controllers, using a Service account to authenticate to the Domain referencing the Workstations (Laptops) We use Rapid7 InsightIDR for our SEIM solution and USER-ID on a DC to authenticate/identify Workstation details. The SEIM is flagging USER-ID traffic from a Workstation to another Workstation as ...

Windows Update feed in minemeld

I'm trying to find out if there's already a miner that someone's created for windows update URLs/IPs. I am using the O365 one with reasonable success, so I'd like to incorporate the windows updates into minemeld and take advantage of the dynamic list functionality for some of my rules. Thanks!