Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
is it possible to set the mgmt port ip subnet same as the inside interface ip subnet? or it needs to be different subnet?
Hello, I have two PAs and want to build IPSec tunnels between them. one PA A has a static IP. The other PA B has two internet connections. One with a static IP and one with a dynamic IP. Now I want to build two tunnels from device B to the A side. my
...
Dear Team,
We are facing issues in pushing the policy from Panorama to firewall.
The commit is successful in passive device but having problem in active device. Tried 2 to 3 times but same issues.
Thanks in advance
I want to be able to grab full URLs when specific sites are visited e.g. github so I can see what app/repo is being hit. Right now all I get is the domain.
How granular can URL monitoring be? Can I get a full URL from URL filtering or URL category hi
...
Guys sorry for the newb question but our company just up and ordered a bunch of PA stuff.
We configure a firewall to access the Internet and connect to panorama on Ethernet 1\1.
We import the devices settings into panorama and achieve a sync.
Now we
...
Quick Q:
When creating the certificate for forward proxy decryption, whcih IP should be used. I expect the internal trusted IP?
Cheers
Rob
im having difficulty understaing the licensing on palo alto , from the attached pictures do i have the anti-virus , vulnrability protection , anti-spyware , url filtering , file blocking , data filtering and wild fire? or does each of them need a lic
...
i appliied a security rule and did a security profile on it but after applying it im getting this message
Hi
Would be nice if there was a reference in the online help - manual to example of regex used
and what is allowed in bgp import and export filters
any one got any links.
if I want to match
^1234($|,.*)
so AS 1234 as the first AS and anything afterwa
...
Yesterday during PAN OS upgrade when Passive PA became active I saw that our IPSEC connections stopped working.
CLI shows status as inactive
I did clear vpn command
test phase 1 and phase 2 still samething.
Only way to make this work was via restartin
...
HI @reaper , @gwesson
I'm seeing the subjected CVE is missing in palo alto vulnerability profile.
How can I mitigate this vulnerability.
https://nvd.nist.gov/vuln/detail/CVE-2019-0624
Regards
Venky
Hi Community,
Hope somebody can address my below query.
I am able to see the Release date of App&threat version 8146-5421 as 2019-04-25 UTC in both threat vault and support portal( is it actually UTC time??, i am seeing 1-day gap here !),
But my firewa
...
Hi Team
How to block the XLSM, AHK extensions in firewall?
Please help us
Regards
Mohammed Asik
Hi,
TI source-:
http://norse.malware.com.br/cgi/submit?action=stats&s=domains
This TI gives two indicators in a single html tag as given below
<tr><td><font size=2>gashsteel.co.za</font> </td><td><font size=2>gasienica.etatry.com</font>&nbs
...
Hi,
TI source-:
http://api.cybercure.ai/feed/get_ips?type=csv
This TI gives a CSV file,the image for which I have attached.
The config file that i used is as below
attributes:
confidence: 80
share_level: green
type: IPv4
delimiter: ','
fieldnames:
- indica
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
