C&C threat from outside 45.9.148.91 similar Shodan Malware hunter ?

Hi Live community,

recently when investigating a false positive C&C threat blocked from "shodan malware hunter" I was pleased to see others had posted into this community about this. In the past 24 hrs we have 2 SIEM alerts for C&C outside to publical

Palo Alto Virtual Firewall

Dear Friend,

Can you anybody advice me on palo alto multi vsys capability issues and currently contests of this technology? If one virtual instance compromise how we can make sure it not impact to other vsys ? How multi vsys behaviour on privileged e

Filter out whatsapp video only from PA220

Hi, 

Is it possible to Filter out whatsapp video only from PA220, or of there is a workaround solution to allow only Text and Images on a PA220 
We have business need to use whatsapp text and Images only 

Thank you 

Seeing these errors in my log pan_packet_diag.log

Hi

seems to be filling up my log file ?  I have no idea 

2020-07-04 12:09:26.595 +1000 Error: pan_cfg_url_policy_need_hdr_insrt_log(pan_cfg_url_policy.c:274): url_profile (nil), cfg available: 1
2020-07-04 12:09:26.595 +1000 Error: pan_cfg_url_policy_

Duo and Palo don't challenge when user connect immediately after disconnect

We have Duo access gateway integrated with Global protect.

It works most as per expected. However there is a small issue.

When the client machine reboot , the user will go through the entire process to login the global protect. E.g

1.       1. They clic

Captive portal browser challenge issue

Hi team,

While trying to deploy Kerberos SSO for enduser authentication I came up to the following issue with the captive portal (browser challenge).

When an end user logged in a windows (part of the domain) tries to connect to "http://neverssl.com"

SSL decryption on PA incase the SSL termintated on WAF

We have a website hosted behind WAF and Firewall (Palo Alto). The WAF already has the server valid SSL Certificate from public CA. Do we need to install SSL certificate (decryption ) on PA Firewall also for inbound traffic to make it more secure ? 

Can Use Okta SAML for GP- "Prelogon Then On-Demand" connection method

Hi Team,

We tried to implement the OKTA SAML authentication method for GP in our organization.

Does Global Protect - "Prelogon Then On-Demand" connection method supports Okta SAML for authentication (MFA).?

If not what is a recommended GP connection