General Topics

wildfire logs showing allow action for malicious url

Two wildifire logs (16 July and 20 July )  are showing for same url with malicious verdict and action is allow. We have checked wildfire report of both logs , all information is same (same hash value , first timestamp seen is 7 July etc. ).

If same ur

Global Protect Client won't reestablishment connection after update

Hi,

currently, I have a problem with the Global Protect Client Update.

After using the GP Client version 5.1.1 I updated to GP 5.1.5 but after the update the connection refuses to re-establish the connection.

The KBArticle (https://knowledgebase.paloa

Latest GlobalProtect host checker supported antivirus & firewalls list

Hi guys,

I'm searching, if exists, a knowledge article or a PDF more recent than this one : https://knowledgebase.paloaltonetworks.com/servlet/fileField?entityId=ka10g000000D5kyAAC&field=Attachment_3__Body__s

Because it's for GP version 4 which is out

How to configure HIP.

Hi team,

++ I want to configure HIP- Anti Malware with virus definition version.

++ I see in HIP log for Definition version as 200729-4 but I am not able to configure the same in Virus definition option in HIP anti malware.

++ I am not able to use any

Block all SSH outbound

For a home user who uses VPN to access internal network, how can we block all his SSH outbound connection to internet?

IPS is not detecting threats

Palo Alto has recently released signature for CVE-2020-3452. however when performing a POC, I cannot detect any threat. I am using link available to public use - 

https://<domain>/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.

How to configure PAN-OS to email/alert me of potential attack?

So, you would think this would be an easy thing to learn and configure, however I can't seem to find the answer from any PA walk through, or through PA support.  

I'm simply looking to configure my PA-3020 (PAN-9.0.0), so that if a new threat is dete

Working remotely with Mitel MiVoice Connect, GlobalProtect, and Softphones?

Is anyone using Mitel Connect and Softphones in a remote work environment where the user has GlobalProtect?  We are trying to get that to work. The only issue we have at the moment is that the microphone isnt working on the remote device.  The user c

Failover of IPSEC Tunnels from active to Passive Firewall

Hello,

I have a setup of Two AWS_VM-Series_Palo Alto devices, which are acting as Standalone firewalls but as Primary and Secondary respectively on AWS. Due to some limitations, I cannot configure HA between them, however there is a tunnel connecting

QoS_Rate-Limit_Guest Network_NAT query_Configuration example

could someone advise me to set rate-limit for guest(10.1.10.0/24) traffic in this topology

I read the article that We need to apply policy on egress interface always. Hence, for upload, it's on outside interface connected to Internet and for downlo

Bypass video traffic exclusion

Hello,

We have GP set up and one of the settings include "Exclude video traffic from the tunnel". However, we have come across an issue that private site for developers hosted in 10.0.0.0/8 network includes internally hosted videos (http-video app-id

Virus/Win32.WGeneric.akbori |

1) Why is this virus triggering in Palo Alto events and Palo detecting this & alerting ?

2) How hashes are different, is there false positive.