icloud email receiving but not sending

I can see the traffic using smtp on port 587 but everything end tcp-fin. Tried turning off decryption to me.com. Traffic hit the rule that allows any traffic out for this particular user and they are also exempt already from decyrption. What should b

static routes to update servers

I have an internal firewall which has 2 interfaces with just connected routes and static routes pointing to 10.0.0.0/8 and 192.168.0.0/16. All the services go through data interface as I disabled managemnt. I was having issues with dynamic updates an

Security Policy Granular to Address Group?

I have a group of computers that I want to apply a different security policy with a different Security Profile to.

I have created 2 Security policies.

The first policy = Internet Out allow any -  Trusted Zone to Untrusted Zone with the default 'basic

Determine if ip address showed up on a blacklist or rbl

I have a different sort of thought and could use some help figuring out if mm can do this. Essentially I would like to feed in a list of ip addresses and then if there is a match against any blacklist to throw it to an output. The idea here is to lis

Does Palo Alto update Aperture predefined data patterns?

Does Palo Alto provide routine updates on Aperture SaaS data patterns for specific countries' PII requirements, e.g. China national ID, Malaysia/Indonesia resident identity card number?  Or can customer make request on those requirements?

Aggressive cleaning feature

Hi,

I have a doubt regarding the aggressive disk cleaning feature introduced starting in PANOS 8.0.7. Details below.

To enable aggressive cleaning:
> debug software disk-usage aggressive-cleaning enable

To check if enabled (if enabled, this command will

SSL_ERROR_NO_CYPHER_OVERLAP

All clients are intermittently seeing "SSL_ERROR_NO_CYPHER_OVERLAP" when browsing secure web pages. This began just about half an hour ago. Any Ideas?

Google-App-Engine traffic

A lot of my firewalls are talking out over this particular app to a google owned IP address.  Anyone know what this traffic is and if I absolutely need it?  Getting ready to pull an any-any rule but need to account (or not account) for this traffic f

Erro: Threat database Handler failed (Module: device) commit failed

Hi, i have to test the lab in eve-ng with palo alto 7.0.1 image and i can't commit to save the configuration as well as ip-address cannot set into this for management interface.  Are we need to set the management ip address same EVE-ng ip address or

PA VM Interface Issue

Dear All,

I setup test lab with vmware workstation. only ethernet1/1 interface is up. Others are down mode. I have attached screen also . Please advice me.

Thanks,

Lakshitha.

Where to mine all O365 endpoints?

Hi dear community,

I just implemented MineMeld server and configured EDLs and test policies.

For the MineMeld I used "o365-api-any-any.txt" from https://paloaltonetworks.app.box.com/s/ywkh7rc2rj0kyl0qetr6m6ag3akxvvx6/folder/51988433336.

Does anybody