Using IP wildcard masks in security policy rules

I have been adding IP wildcard objects into security policy rules and they have been working until yesterday when I added some new rules with several wildcard objects.  I have looked on the support site to see if there are any limitations on how many

How does the Wildfire handle RAR & JAR files

Hello everyone,

If I have the valid WF license and I enable the forwarding the RAR & JAR type.

What the WF does when RAR & JAR file is being received?

Does it analysis thoe files located in a JAR or RAR archive?

Just wanna know.

Thanks

Firewall collects huge number of syslogs into a giant file then sends it causing delays.

We are having a huge problem with only one of our syslog destinations. Instead of sending the syslogs as they are generated, the firewall is collecting them into a huge file (10-40GB) and sending this a few times a day. This is ridiculous and is maki

Log at session start??

Hello everyone,

What I read the best practice is to enable log at session end, is there any use case to enable log at session start?

any thoughts?

thanks

IP to Tag registrations and Multiple vsys 10.1

Has anyone noticed issues with 10.1 and trying to register ip to tags on mult-vsys firewalls from/through panorama?    We've been registering ip to tag through panorama for a while with success.  Everything appears to have worked when using panorama

Host machine behind Palo Alto VM firewall

Hello all,

I am running PAN-OS 10.0.1 VM series firewall in VMware workstation. Currently I have a windows 10 VM machine behind the firewall. My interfaces are set to eth1/1 is the outside interface which is set to my home network. Eth1/2 is my inside

GlobalProtect OTP (Googleauthenticator)

Hi,

I have GP configured using LDAP for authenticating. Now i would like to configure LDAP with OTP (Google authenticator). So i have several questions:

-Its possible to configure LDAP+Google authenticator? is there any procedure o manual to help?

-In o

How to locate the IP address range mapping to country/Region

Where can you locate the IP address ranges for the Country/Regions.  I am adding in a block rule for specific regions, but I need to know the IP address ranges that this uses in order for uses with some identity blocking.

wildcard fqdn for destination in Policy based forwarding

Hello,

i have created a Policy based forwarding to make some traffics go trough one of my ISP lignes it works fine but i can't add a wildcard fqdn address for exampl (*.amazonaws.com) . how can i do this ?

Thanks in advance,

External GP Authenticate LDAP + Radius (Google Auth)

Hi Folks. aAnyone know if the integration to external GP users to LDAP and Radius integrtion works in the same process?

I probe the integration between Palo Alto - Google Authenticator trough RADIUS and it works perfectly. But now I need to integrate