Voice Call Signalling Issues - Hold, Transfer, Call Pick-up all randomly fail

At a handful of locations when someone calls in and the staff go to pick-up the call it does not pick-up and continues to ring on other phones in the office. When they place someone on hold, sometimes it does not come off hold and they call is droppe

Unencrypted HTTP basic authentication not flagged as a risk/threat?

I was doing a side-by-side comparison of various IDS/IPS sensors, including an inline Suricata sensor, as well as my PAN firewall. Suricata throws an alert if it detects that an HTTP Basic Authentication event crosses the sensor over an unencrypted c

Master Key Deployment from Panorama

Has anyone deployed a new master key from Panorama to an HA pair? Following the process at https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/manage-firewalls/manage-the-master-key-from-panorama.html it doesn't mention anything about HA.

P

Panorama - logs displayed for some firewalls are almost 20 hours old

Panorama 9.1.2 VM

Both firewalls running 9.1.2 and forwarding logs to Panorama.  For one firewall the logs in Panorama are current.  For the other they are over 19 hours old for the traffic logs.  There is a third firewall where Panorama shows logs m

certificate profile

Hi

I want to use/setup a certificate profile for use with an EDL.

The site - internal running minemeld. has multiple int CA.

So for the profile, do I add only the last int CA or all of them.

How does certificate profile work will it say okay if any cer

User ID to IP Mapping : limit

Dear Team,

Can i make Limit on User-ID to Map with only One IP address after configuring AD integration 

Thanks

Unable to send email alerts

Rule to allow access for group of IP addresses

New to PA.  I'm looking to create a rule to temporarily allow access to any url for a group of IP's.

Floating IP for Active-Active pair VPN

Hi All,

I'm trying to configure a Floating IP for a VPN on an Active-Active pair of 5220's. I have the Floating IP configured with the Active-Primary Device Priority 1 and Active-Secondary with Device Priority 100. The Interface IPs for both devices

Palo Alto connection Virtual wire drop User VPN anyconnect

Hi everyone,

I am facing an issue where I setup my PA-850 as a transparent mode (virtual wire) and set the policy as default to allow all the traffic. Connection of my PA-850 is in between router and core switch. I can see all the traffic is passthrou

PA NGF SMB bruteforce behavior

Hi, 

Im wondering what is the behavior of SMB bruteforce vulnerability alert from PA FW. Vulnerability id (40004) SMB brute force seems to be triggered by a child signature 31696(SMB login attempt). Question is the child triggered every time there wa