can we mitigate CVE-2021-3031 PAN-OS by restricting dataplane interfaces of NGFW

CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak)

Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series firewall

Uninstall traps without password

I need to uninstall traps but I forget the trap uninstall password(that is not default password)
what can I do now?

MS-Teams Update Security Policy Help

Hello all,

 I'm trying to fine tune a security policy to allow MS-Teams to update; based on what I can see the logs, it seems to contact statics.teams.cdn.office.net for the update.  I have created a single policy with that destination as a FQDN, all

how to check list of users of particular group who are connecting Global protect.

We want list of users of particular group who are connecting Global protect.

Reason behind this requirement is to get number of users from particular group who are connecting GP. So accordingly we can purchase the licence for 2FA from third party vend

Wildfire behaviour

We can not understand at all how Wildfire works.

We realised that WF detects files that have been downloaded and categorized as malware can continue to be downloaded for a long time, this behavior is not the expected, which indicates that once it is

Site maintenance/ Product Compliance space

Would somebody who is tasked with maintaining the Product Compliance space please contact me?

I need to have several "folders" added...

Thanks

Frank K

DNS Security scaling?

Hello,

We're looking at replacing some Fortinet and Juniper devices with PA's but can't find any details as to how many entries can be cached with the "DNS Security" feature.

I have a lab 220 I'm using but the output of the commands don't seem to sho

Slow ISP bandwidth through PA-3020

We upgraded to a 1gb/s internet connection from a 50mb/s on Friday.  For some reason we are only seeing a max of maybe 250-300mb/s but in most cases we are at 175mb/s.

We have a PA-3020, with App-ID enabled and Threat.  We did our research before upg

PA 3000 Make users accept TOS before browsing the web

Hello, we use our PA 3000 as a router to distribute our ISP to multiple locations. Is there a way that I can make it so when a user try's to browse to the web either a pop up or a redirect happens so that they have to accept terms of service prior to

UserID issue when using RDP via GlobalProtect client

Hello,

I have the following issue when using RDP via GlobalProtect client.

Situation:

• PaloAlto 820 with PAN-OS 9.0.9, GloablProtect Client 5.2.4, Windows 2016 Active Directory
• For remote access we use GlobalProtect with Active Directory accounts (RADIUS