How to fix this vulnerability in palo alto?

Hi,

Please help to resolve the following vulnerability

Vulnerabilities :
1. HTTP DELETE Method Enabled (http-delete-method-enabled)
2. HTTP OPTIONS Method Enabled (http-options-method-enabled)
3. TLS/SSL Server Supports The Use of Static Key Ciphers (ssl

Changing password over GlobalProtect

Hi team,

Does anybody know if there is any compatibility issue between Palo Alto and Aruba Clearpass for changing users' passwords?

When we use Microsoft NPS, GlobalProtect users will be prompted for changing their passwords when the passwords are expi

Any thoughts on how to whitelist Akamai IP ranges?

Hello Network,

Any thoughts on how to whitelist Akamai IP ranges? I am hoping to use MineMeld as the aggregator of the information.  We currently use it for AWS but I did not see a node built for Akamai.

Thanks in Advance,

Scott 

I need to block the file with it's classification content.

I am new in Palo alto I would need to block the file with it's classification data, in attached screen shot there is AdNew file and its classification on properties section is "Deepika_Classification" Label is there I need to block as per it's label.

Panorama 10.0 Issue with Risk Factor displaying as zero

Hey everyone! So one of customers recently migrated to PAN-OS 10.0. They have a couple of firewalls, a M200 as a log collector and a Panorama appliance. The ACC initially doesn't show any data, which it did with previous releases. We must switch in a

PA-VM (v8.1.10) shows ETH interfaces at 10G and need them to be 1G

Running GNS3 on VMWare Workstation setup.

I have PA-VM installed running v8.1.10 code.

Everything runs well but seeing that my interfaces are running at 10G (by default) and I can't change that.

In Network-Interfaces-Ethernet-Advanced - "Link Setting" -

change log retention days

hello all,

I'm trying to change the log retention days but i'm not sure about the below:

- Does it required a restart or rebooting?

- Does it have any impact on the firewall configuration or the services configured on it?

Your help will be really appre

HA, Active-Active or Active-Passive

Dears Expertise,

we have 2 PA-3220, and we think to configure HA between those devices,

now what is the best practices for mentioned topic   

Active-Active or Active-Passive

just i want to know what is the essential difference between them, when i need t

Feature Request: alert rule message template for ALL destination types

Allow for creation of message templates for ALL destination types, not just email.

Would like to customize SQS message and all other messages formats when sending an alert.

Business value:

Allows customers to customize and manage event messages from ale

Video Streaming/MSteam Video hazy

Hello,

Recently we upgraded the OS from 8.1.13 to 8.1.16 .After that we found that there is delay in video streaming sites especially Youtube .

Apart from that our video enabled meetings are hazy for all the internal users.

I am not sure whether its rel

Enabling IPv6 on untrusted Ethernet1/1 interface brings down IPv4

I tried working with Palo Alto support but there hours don't match with my schedule. 

I decided to start using IPv6 on my local LAN and WAN. 

I setup a DHCP server using MS Server and created a scope. Devices on the network are getting two IPv6 addre

Change the Default Packet Capture size from 96 to 1500 bytes.

Unable to change the admin of the virtual PAN OS 9.0 credentials on VMware Lab

Hello Community,

I have set up my Virtual Palo Alto Firewall on a VMware virtual machine. The issue is that when I start the Virtual FW , it asks me for the credentials. I enter admin/admin , then it requests to change the password. I enter the new pa