Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
Hello,
We have devices with TRAPS and we has found files with strange names as !!!!!!!!* and zzzzz*.
I we try to modify or execute we get anti-ransomware alert.
this files are normal? could be a bug?
I have this weird issue where if my wireless clients lose connectivity to my meraki AP and then have to rejoin after the AP reboots, the DHCP server on the PA-220 stops handing out DNS servers that are inherited from the untrust port. I have all clie
...
Hello, is there a way to report suspicious DNS domains to Palo Alto for inclusion on the Palo Alto suspicious DNS query list? we have a domain which various threat intelligence sources report as suspect/risky but it does not appear in the Palo Alto
...
HI Team
Our customer has one requirement that need to upload files in Wetransfer application but its also using the web-browsing application to upload the same file. If i allow the Web-browsing application in policy unnecessary websites are getting o
...
Hello.
We are having a minor issues on one of our customer firewalls performing decryption.
it seems certain sites. that have a certificate issued by sectigo.
chain
root: Sectigo
intermediate: Sectigo RSA Domain Validation Secure Server CA
site certific
...
We are experiencing an upgrade error/failure when we try to upgrade PA3020 from 8.0.11-h1 to 8.1.9-h4.
When our customer tried to upgrade from 8.0.11-h1 to 8.1.9-h4; their PA3020 went to Maintenance Mode after installing and rebooting .
The Maintenanc
Dear Team,
Hi All,
I have a users who plan to connect their phones (To use a soft phone app for the PABX) and laptops to the internal network from outside, i have setup the global connect gateway and portal and tried to use self signed cert but it is not workin
...
I am trying to determine how to change the Site Access of the new URL categories (cryptocurrency and grayware). By default, they are Allow, and I want them to be Alert. I can do this via CLI w/ the command from config mode below.
set shared profile
...
I'm looking at getting a Palo Alto used. A lot of the units are pan os 4, 5 or 6. For a PA-500, for example, can I get a 5.x OS and upgrade it to 7.1? Does this require a support contract to upgrade it?
Hello everybody,
I have a PA-220 and setup a rule that my children cannot access the internet after 8pm. This is working but only for new sessions. Existing sessions like TeamSpeak or BattleNet started before 8pm are still open. Can I somehow kill al
...
I recently adding a new syslog destination at this new to me site and noticed something I hadn't seen before. That is that the sending of syslog data according to PAN Monitoring is send sporadically and in big bursts. For example when I added the new
...
Is there any known issue with Dynamic Updates? Our firewall can't get updates in the last 4 hours. The last update we got was around 4pm (GMT+10). The traffic log is showing incomplete. 'show url-cloud status' shows Cloud connection: not con
PA running 8.1.9 we have rule from any source any zone do not decrypt financial-services category.
CLI test
test decryption-policy-match source 10.x.x.x destination 23.249.200.33 category financial-services
Matched rule: 'No_Decrypt' action: no-dec
...
I'm in the process of implementing User-ID and want to parse syslog logs. the predefined parse profile don't appear to be a match, as I'm looking to pull syslog from my domain controller. However, my Active Directory team can't provide me with a samp
...
reaper
on:
Tunnel Monitoring
reaper
on:
Global Protect need to ask for password all time we connect
reaper
on:
GlobalProtect Android version 13 issue
