Palo Alto Vulnerability Points (Urgent Action Required)

Hi Team,

Can anyone provide your valuable suggestion here please.

Below are the VAPT points shared by customer and solution provided :

PA Vulnerability points (For reference please find attached pdf) :
1) ssl/tls protocol initialization vector implemen

Any way to get this scenario configured?

I have GP Gateway license on my PA-5020 firewalls. I would like to allow 200 corporate owned samsung phones to access the VPN and block all other mobile phones. what are all the options I have to selectively allow them other than having a certificate

Renewing a certifiicate with digicert fails

There is plenty of space on the disk. Any insight on what could be causing this problem? Thanks in advance!

Explicit and Implicit Allowed / Denied Apps?

I am trying to understand the relationship between apps and how rules for specific apps affect the access of other apps.

I was reading this article: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClirCAC

In there, it uses t

Logging to Panorama VM

To cut a long story short.....

we lost Panorama VM. (ESX)

i removed firewall (3020) from Panorama management and selected "disable Panorama Policy and Objets" in Device\Setup\Panorama settings.

imported policy and objects before disabling.

built new VM

How to configure multiple syslog server in firewall 7080

Hi Team 

I need help to configure the syslog server in both in internal(firewall) and external server 

It is possible? Is there any relevant document 

Firewall is 7080 

single vsys to multi vsys setup

Hi

So i have a cluster setup as a single vsys

I want to introduce a vendor GP setup - i have some vendor that want remote access to equipement and I want to allow them that access but   limited to just that.

I want to get around the accidental giving

(EDU-110) Player is not playing certain videos -Firewall 9.0 Essentials: Configuration & Management

The Open Curriculum player fo Firewall 9.0 Essentials: Configuration and Management (EDU-110) Player is not playing certain videos.  I have reached Intial Config > Initial Sytems Access > Configuring Service Routes and the video will not play.  I can

Dual IPsec Tunnel to same destination with ECMP

Hi everyone,
I would like to set up two ipsec tunnels to the same destination. I know I could do this by assigning the tunnel interfaces different metrics in the VR. But if I do that, only one tunnel will forward traffic at a given time. In our setup

After upgrading to 8.1.8 on pa 3050 we had a full site drop of all Https traffic with decrypt enable

we have a PA 3050 with decryption enabled for about 180 users, cpu under 30% most of time.

Upgraded firmware to 8.1.8 on Sunday and late Monday afternoon all Https traffic failed, resolved by turning off decryption.

any ideas?

PANOS 8.0.0 EDL requires certificate

Hey guys,

Just set up Minemeld, upgraded to PANOS 8.0.0, running into an issue with seeting up the EDL, the source (https://minemeld.local/feeds/inboundfeedhc) being HTTPS, PANOS now requires a certificate profile for the communication to work - wh

ADUC not loading while GP is connected

When Global Protect is active (be it at home or on site) it is nearly impossible to work with 'Active Directory - Users and Computers'.

It takes easly up to 10 minutes -and longer- before it is loaded and every action/click that involves loading or ch