General Topics

Resolved! Marking non voice traffic as EF in PA-220

I have a vpn tunnel & clients on the internal network need to initiate connections to a server on the other side (egress traffic).  The max upload speed of the broadband circuit is 5 megs which is always at max utilization.  Is there a way to mark tr

Resolved! Jump in Suspicious HTTP Evasion Found and Suspicious TLS Evasion notifications

Recently I have noticed a jump in detections of Suspicious HTTP Evasion Found and Suspicious TLS Evasion Found going to genuine website such as eBay, Amazon, Apple etc. The firewall is setup as a DNS proxy that forwards on to PiHole and then out to a

Resolved! Geography blocking to China, now need to make exception for a single IP address.

Under Policies we are using deny by region with the country objects listed. One being China. I have a request for some needed technicians to be able to receive traffic now from one specific IP address in China.

How does one add a single IP exception

Resolved! Expedition Export

We are trying to migrate a Checkpoint firewall.  We have Expedition set up and have imported Panorama as our base config.  We were able to add the Checkpoint as well and merge the configurations.  However, upon export, the process hangs.  We have tai

Resolved! User-ID Agent on MS Server 2019

Does anyone know if Server 2019 is officially supported, for running the User-ID agent yet?

Also, any reason i shouldn't run version 9.0 if my firewalls are 8.0.16?

Thanks

Resolved! Init session - Is TCP 3 way handshake gets completed here?

Init session info

Does TCP 3 way handshake gets started and completed here?

Resolved! IPSEC tunnel is up but can not ping through

I have IPSEc ikev1 tunnel with vendor.

Phase 1 and 2 are up and green.

From PA   from my Lan interface when I ping remote lan subnet ping does not work.

I see no return traffic from vendor to PA.

IS this normal behaviour to have Phase 1 and 2 up but r