How to configure HIP.

Hi team,

++ I want to configure HIP- Anti Malware with virus definition version.

++ I see in HIP log for Definition version as 200729-4 but I am not able to configure the same in Virus definition option in HIP anti malware.

++ I am not able to use any

Block all SSH outbound

For a home user who uses VPN to access internal network, how can we block all his SSH outbound connection to internet?

IPS is not detecting threats

Palo Alto has recently released signature for CVE-2020-3452. however when performing a POC, I cannot detect any threat. I am using link available to public use - 

https://<domain>/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.

How to configure PAN-OS to email/alert me of potential attack?

So, you would think this would be an easy thing to learn and configure, however I can't seem to find the answer from any PA walk through, or through PA support.  

I'm simply looking to configure my PA-3020 (PAN-9.0.0), so that if a new threat is dete

Working remotely with Mitel MiVoice Connect, GlobalProtect, and Softphones?

Is anyone using Mitel Connect and Softphones in a remote work environment where the user has GlobalProtect?  We are trying to get that to work. The only issue we have at the moment is that the microphone isnt working on the remote device.  The user c

Failover of IPSEC Tunnels from active to Passive Firewall

Hello,

I have a setup of Two AWS_VM-Series_Palo Alto devices, which are acting as Standalone firewalls but as Primary and Secondary respectively on AWS. Due to some limitations, I cannot configure HA between them, however there is a tunnel connecting

QoS_Rate-Limit_Guest Network_NAT query_Configuration example

could someone advise me to set rate-limit for guest(10.1.10.0/24) traffic in this topology

I read the article that We need to apply policy on egress interface always. Hence, for upload, it's on outside interface connected to Internet and for downlo

Bypass video traffic exclusion

Hello,

We have GP set up and one of the settings include "Exclude video traffic from the tunnel". However, we have come across an issue that private site for developers hosted in 10.0.0.0/8 network includes internally hosted videos (http-video app-id

Virus/Win32.WGeneric.akbori |

1) Why is this virus triggering in Palo Alto events and Palo detecting this & alerting ?

2) How hashes are different, is there false positive.

Kernel panic on a PA-500 device ...

Hello,

Anybody ran into such issue with a PA device ?

"Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(8,2)"

Then device goes into loop boots... No way to make it boot, even using the maintenance partition.

Is there a way to use

Almost maxing ssl decryption settings

Hi,

We own a PA-2050 running version 5 of the pan os in a school.

I have recently noticed that we are now approaching the ssl decryption limits of the device. i.e. 977/1024.

Previously I didn't know that there was such a limit.

What is the best method to

Panorama M-100 dynamic update menu not present under "Panorama" tab

Dear Patrons,

I was attempting to perform the dynamic update (specifically anti-virus update) but  I noticed there is no "dynamic update" menu, somewhere I read that M-100 series antivirus update can only be done over CLI, is that true?

Not only the

Ansible: Create Security Rules and move above to cleanup using

Hi,

We are in process of implementing Ansible for PA Security Rule Automation.

We are using panos_security_rule module for rule creation and it creates a new rule at bottom, which falls after cleanup rule.Using Ansible modules can we move the newly c