General Topics

Unable to reboot Panorama

An old contractor setup our Panorama and I just tried to update the software.  It says I do not have permission to reboot Panorama.  I am a superuser.  How do I give myself permission to reboot Panorama?

High CPU Usage causing dropped packets..can't find what is causing it

ACC isn't really telling me all that much except for a couple of end hosts with a fair amount of sessions so I blocked those but still doesn't seem to have helped whatsoever.  I tried restarting the data plane as well to no avail.  Can someone help m

GlobalProtect dns dynamic updates

We deny DNS outbound except for domain controllers.  I noticed a lot of denied DNS entries on the firewalls for users coming through globalprotect.  Looking at the packet captures, the traffic is destined to the domain name's public name server ip ad

Email Scheduler Not Working Consistantly

Hey Everyone,

I am running into an issue where custom reports that I have built that are sent on a daily basis aren't being sent consistently.

I have 3 different Email Server profiles being used in four different Email Schedulers sending two differen

Superuser cannot access Edge FW

Our PAs were recently setup by a now former contractor and all templates appear to be the same.  However, while our new contractor is able to access all of the internal FWs, he is not able to access our edge FW.  Any ideas?

DAG and Panorama

When looking at Dynamic Address Groups along with Panorama, it almost looks like this can't be done unless you are using NSX.  I setup the VM Source on one of my firewalls and I can do a DAG, but it doesn't transfer back to Panorama inorder to use it

HIPPA \ Health Data Patterens

Has anyone written regex data patterens for HIPPA Data for Palo?  Is Palo plannig HIPPA Patterens?

Global protect app require admin credential to upgrade in transparent mode?

Global protect app require admin credential to upgrade in transparent mode?

We want to upgrade agents from 4.0.2 to 5.0.8 in transparent mode. Can we upgrade from 4.0.2 to 5.0.8 directly ?

Also user machine ask for admin credential when we install any

Block Brute Force RDP attempts

I have a Palo Alto 820 up and running, and one of its roles is to publish an terminal server (on its default port3389, the Terminal Server have an 2 factor authentication mechanism.)

I see lots of connections, and i would like to block this brute for

Global Protect Implementation

What's the best way to implement Global Protect in my home network so that I can access it from the outside?

Zone Protection - Reconnaissance

Hi,

Are there any best practice settings for the reconnaissance portion of the zone protection profile.

I see the default has the below.  Is it recommended to leave as defaults or does someone have a better recommendation?

TCP Port scan 100 events wi