How are unused objects calculated

I couldn't find a definitive answer to a question regarding the discovery of unused address objects found by Expedition.  According to the manuals, unused address objects are those not referenced in a security or nat rule.  However, an address object

Import/export settings

Hi everyone there is an export to csv/pdf option for rules/objects. 

is there an import button ? I would like to export these setting to another firewall surely I don't have to mess around in the CLI for this ? if it can read from the config locatio

Login issue for TACACS user in Palo Alto NGFW

We are not able to login into Palo Alto via TACACS user.

PA NGFW is asking for reset password before login.

We are not able to reset password.

We have reset password complexity by login with another local user.

We have not assigned any admin roles for TA

Azure VM cannot access the Internet

Hi there,

We have deployed Hub and Spoke technology in Azure. All VM traffic is going through the FW. Settings of Spoke VM is same as Hub VM. NSG set to allow all traffic. 

FW is configured with 3 VR static routes (one route to the internet, one from

File Blocking not recognizing .docx or .xlsx files.

I just created a new file blocking profile and added xlsx, pdf, docx and multi-level-encoding.  I set the action to alert.  I want to monitor the found traffic prior to implementing a block rule.

When I download a PDF file from the Internet, the vent

TI automation - Foundation: custom prototype and SOC integration [part 2]

 Hi again,

after good feedback received on the first post on MineMeld architecture and hardening I wrote a new post on how I built the foundation of near-real-time integration of MineMeld with our Information Security Operation Center (i-SOC) custom

Different data in ACC reports and custome created report

Helo Everybody,

I have created a custom report in Panorama to generate the same data that we get in ACC - Application usage report, for last one month. But it looks like the data in the custom report is always different than that which is genereated i

Pre-defined reports only useful for Last24 hours?

Hi,

I wanted to use the pre-defined reports for a summary of the last 7 Days (or Last week) but as I see, these pre-defined reports only work for the last 24 hours / last day, even though I send the Email with all pre-defined reports only every sunday

Filter Policies by Target "Device-Tag" not possible with 9.1.x (Feature Request)

Hi,
since we are changing policy targets from "device name" to "device tag" (device-Tag defined in Panorama > Summary), we still have the need to filter for special devices (device-tags) within the policy sets.

But what I have seen with 9.1.6, filterin

Global Protect not detecting Crowd Strike Firewall

Hello, 

Was wondering if anyone could help me? We recently installed Crowd Strike Firewall, but it's not being detected by the HIP Check I setup. I have created a rule for Crowd Strike Firewall. So technically it should see it right?

PAN Security Advisory (11-AUG-2021)

Thought I would just put this notice out since I know a lot of people don't actually subscribe to security advisories directly. If you haven't already, I highly recommend that you sign up for notifications via https://security.paloaltonetworks.com/ a

User id not fetching for same ip in traffic logs.

User id not fetching  in traffic logs.we created user base rule on that basis mapped ip address shows user id for same rule .but some time user is not authenticated from that user base policy rule and it is moving from next any any rule. if it is mov