There is a file that is being blocked with an extension of .ATB.ZIP is there anyway to allow this file to be downloaded instead of being blocked by the rule. I am guessing this is a predefined rule in the Palo Alto because all other .zip files are al
...
Hi
I have a ipsec tunnel with a vendor - they use cisco on their end.
I have been advise IKE and ESP lifespan is 8 hours ... 28800 sec
But what I have noticed is if I set it to this around 6 hours in traffic stops passing.
I have to restart the tunnel
...
Hi Community,
I got a question:
During a project migration, we noticed asymmetric routing and had to disable the protection in Zone Protection profiles.
While doing the tasks for aftermath, I wanted to analyze the problem and had a look at the global c
...
All,
I had enabled ssl decryption and no issues with desktops. But, Android phones have issues with apps like youtube,DUO etc but can browse through chrome.
I assume this is because of certificate pinning that these apps use. Please correct me if I am
...
Guys, I wanna to take an ACE exam and should to attand to the training courses. i've been told to attaend to the firewall configuration essentials Firewall Configuration Essentials 101 PAN-OS v.6.0 RevC training course, but i noticed also the follwoi
...
I have been playing with new features in 9.1 in the lab and have noticed a couple things that others may want to be aware of:
* The Global Protect ACC tab is nice, however it does not include Global Protect client-less activity
* With the addition of
...
Hi Team,
There is a known issue in 9.0.5 and that is "Dataplane crash due to duplicate child SIP sessions."
I have seen this below URL for further understanding,
https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-release-notes/pan-os-8-1-addressed-issu
...
We are working with a partner who is using Google Cloud VPN and we are seeing latency issues. They will only reference Google documentation and will not set MTU on their end. On our end we are trying to determine the optimal MTU setting, but it's a b
...
Hello Team,
In the firewall, it is showing around 4000 threat logs of brute force threat and I am receiving 4000 mail in my mailbox.
Is there any way for specific threat I will receive only one email
Hi guys,
every time i login to the Panorama i get the following message:
Warning: This Panorama instance does not have a license key. Click 'OK' below to try retrieving the license from the Palo Alto Networks Update Server.
You have 0 days before comm
Hi,
i have deployed Panorama instance in the AWS and wanted to connect to it via ssh in order to set a password for the admin user,
when connecting i used the private key generated by AWS and i was asked for a password which i did not set yet.
please n
...
From trust to untrust zone ,we have allow the download from google drive but have to block the upload from google drive and also i want to use internet for other web service
help me security rule and if there any other url filtering
Is anyone aware of a way to remotely trigger a Minemeld Miner refresh.
Does MineMeld have it's own API?
I'm familiar with using PA API and Dynamic Address Groups for instant addititions of IPs. This is for a usecase where EDLs are used and we'd l
...
Originally my devices are:
-one M-100 with 7.1.10
-two PA-5020 (HA) with 7.1.10
-one PA-3050 with 7.1.9
all of three Palo Alto devices were registered to M-100 and forwarding logs were working fine.
I start upgrading M-100 first.
From 7.1.10 to 8.0.20.
-u
...
Hi,
I am using PANOS 9.0.4 and working on legacy rules to AppID rule migration. When using the Policy Optimizer, trying to export the "No App Specified" data, the export is missing the "App Usage Apps Allowed" data, and the "App Usage Apps Seen" data.
...
Raido_Rattameis
OtakarKlier
on:
Unable to ping website, getting this site can't be reached
BPry
on:
PCNSE certification, how to get an online training fully covering all the possible questions
reaper
on:
What does ch mean in PA-VM-OS Software?
