FQDN security policy

Our internal servers connects to a server on internet . There are existing FQDN based security policies. The destination FQDN resolves into multiple ip addresses . I am seeing few allows and denies for that particular destination URL on paloalto traf

"Device > Server Profiles > HTTP" gives error: Connection to: https://b76093c3662d5b4f.hook.limacharlie.io:443 failed: Couldn't resolve host name

Hi Palo Alto guys,

I want to send traffic using HTTPS to LimaCharlie. 

I want to start by saying that I managed to get it working using CURL with the following command:

7.1 Dataplane CPU Utilization

I'm curious how many people out there have had high dataplane CPU utilization ever since updating to 7.1?  We updated to 7.1 so that we could decrypt additional ciphers and ever since updating we've had abnormally high dataplane CPU utilization which

Palo Alto - The server's X.509 certificate cannot be trusted

We used Nessus tool to run security scan on the PA-5020 & PA-3020 series & it identified with the following below medium vulnerability:

The server's X.509 certificate cannot be trusted.

Please let me know, for any fix to this vulnerability.

Impact of Rack Server Placement on Palo Alto Networks Firewall Performance

Hi everyone,

I’m currently setting up a new data center and am wondering about the impact that rack server placement might have on the performance of our Palo Alto Networks firewalls. We’re using a mix of physical and virtual firewalls, and I want

Arbitrary commands issue on ansible

Hi;

         While Executing Arbitrary commands like (eg:  show lacp aggregate-ethernet all, show chassis status ) via ansible playbook its not getting exact output as we getting in paloalto console output some attributes are missing, I am using th

URL Filtering issue

Hi All,

So i'm trying to whitelist a site that was tagged as 'parked' by PAN-OS. i added this to a custom URL category, and configured the URL Filtering profile to allow/allow.

The site is still getting blocked. To get around this, i filed a requ

Negating an Argument for XML API Query

I am essentially trying to query the XML API for the active firewall to grab out operational logs using the below query except I would like to NEGATE the application so that I am grabbing out the logs that do not include that application type. Right

Palo Alto and Aruba Clearpass integration

Can someone please point me in the direction of any documentation for integrating PA firewalls with Aruba Clearpass. Understand Clearpass has a direct path into the API without the need for any programming?

GUI not responding

Hi All!

after logging in the GUI not works anymore, i tried to restart the web service via CLI using the command 'debug software restart process web-server', but nothing changed.

Can anyone give me some tips?

Thank you!

Regards,

Daniele

getting more global counters through SNMP

there are a bunch of counters available through SNMP, for example the amount of active sessions at a specific moment

I am looking for the overall amount of sessions created on the firewall, with the int

PA410 Version: 10.2.7-h3 does not send logs to Panorama

Hello,

after upgrade to version 10.2.7 h3 the Pa410 does not send logs to panorama, I have tried several versions but in many of them it does not do the autommit because there are bugs recognized by Paloalto. Do you know any stable version for this?