I need your help on this please.
Is it possible to have a wildcard FQDN as a source or destination address (example *.microsoft.com)
Is is possible to mix wildcard FQDN with a non wildcard FQDN in an address group (example add in *.microsoft.com with
...
Hi,
We have configured the firewall to forward the correlation event logs to the syslog server. We started verifying the logs in syslog server and found the logs were not matching, all are showing the same value in the syslog server "host visited kno
...
Hi
I have 2 ISPs on my PA 3220. I need to set it up in a way so our core traffic passes through ISP1 and guest WIFi and other non-critical traffic passes through ISP2. Also I need to make ISP2 as my backup ISP if ISP1 goes down. I have read about cr
...
Hello Everyone.
I am running into a license expiry problem with couple of PA firewall deployed in a customer site. There are several subscription based licenses based on the portal that are gonna expire around 29th of July this year. However the lice
...
We have a problem in being able to enable Global Protect from Linux, see detailed information about the problem to guide us about it. I am writing to ask for help with a situation that I have been trying to solve for a while. I know that the Windows
...
Dear Team,
I don't have much idea about Moriagent malware, i got an instruction i need to create a rule or block this malware
How to stop MortiAgent Malware using snort rule?
I want to stop the MoriAgent malware by applying /using snort rule.
How to
...
I'm currently running 8.0.6 and trying to upgrade to 9.1.3.
I'm trying to install per the recommended stepped upgrade, but having zero luck.
When I use the WEB GUI to upload 8.0.13 or 8.0.20 it says "PanOS_800-8.0.13 saved" or "PanOS_800-8.0.20 saved
...
Hello,
I have read about Panorama's modes. But I would like to know if Templates and Group Device's configurations are available without matter what mode is the VM/Physical device.
As I understand the documentation, the Panorama's mode only determi
...
I have two datacenters each with independent Palo Alto setups
Each site is configured Active/Passive, there is no peering of the Palo's at one site, with the Palos at the other site.
My Cisco L3 configured switches are reporting a duplicate MAC address
Hi All,
I carried out an upgrade on a Panorama appliance this morning, M-100 model.
Went from 9.0.6 to 9.0.9-h1. Process was fine however it needed a cold boot (pull power cables) to recover, it did not come back on its own.
Couldn't even console to
...
There is high risk app (ilovepdf) used which got identified in CASB in our corporate network & management informed to block this app in Palo Alto. Please let me know if there is any option to block ilovepdf app only specifically in Palo Alto firewal
...
We used Nessus tool to run security scan on the PA-5020 & PA-3020 series & it identified with the following below medium vulnerability:
"The remote host supports the use of SSL ciphers that offer medium strength encryption"
Please let me know, for an
...
We used Nessus tool to run security scan on the PA-5020 & PA-3020 series & it identified with the following below medium vulnerability:
The server's X.509 certificate cannot be trusted.
Please let me know, for any fix to this vulnerability.
Hi,
I have two PaloAlto 3020 in an active-passive cluster. PanOS 8.1.11 is nstalled on both. Everything works correctly, internal traffic, traffic from GP Client, vpn tunnels. GP clinets connect, sends HIPs, Palo recieves this HIPs, traffic is passing
...
reaper
on:
What does ch mean in PA-VM-OS Software?
OtakarKlier
on:
PCNSE Bootcamp
