Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real
I have a rule that allows the administrators remote desktop access to our physical domain controller. While reviewing the traffic logs I can see that the PA is show allows and denies for the exact same traffic from my PC to the domain controller usin
...
Hi,
The certificate we use for GlobalProtect needs to be renewed and I have just paid the renewal and received the file from digicert..
In my PA500's Device Certificates the expired certificate has two lines: The second line's certificate name ha
...
Hi,
I am a somewhat newbie to PaloAlto firewall. I was wondering if someone could give some good guidance into what "Daily" tasks look for a PaloAlto Admin? What should they be monitoring on daily basis? Is there a nice checklist of things that sho
...
Is there a way to run a report to see if CPU is getting spiked over a 24 hour period of time
Hi,
I am trying to get my head around VWIRE and how it supposed to work.
We have the following scenario
SWITCH -> VIRTUAL FIREWALL (ON SHARED HOST) -> INTERNET
We are now looking to do
SWITCH -> PALO ALTO -> VIRTUAL FIREWALL (ON SHARED HOST
...
We are having problems with a site to site IPSEC VPN between a PA-500 and a Cisco ASA. The PA is always the initiator and the tunnel comes up and passes traffic just fine. The problem comes when the tunnel needs to rekey, basically it seems that the
...
Hi all,
Doing some testing with a PAN-OS v6.0.0 VM-100. The command ‘set system setting logging default-policy-logging 300’ is configured so I am seeing log entries for traffic that is being blocked by the implicit deny rule for inter-zone traffic.
...
Hi All,
Firewall is connecting to update server. it retrieves all the recent PAN-OS versions and all dynamic updates(app ver).
But when i start to download the software/dynamic updates, its connecting to update server and exchanging some packets
...
We are seeing a lot of Microsoft Windows SMB Fragmentation RPC Request alerts on our internal network since the updated SMB parser\signatures were released.
The (assumption!) is this is not an active evasion as it is widespread across our Windows s
...
Since upgrading to 7.0.4 our traffic logs now show the action of 'reset-both' and 'deny' when the rule explicitly has been set to 'deny'. This is occuring on multiple rules since upgrading from 6.1.8.
Example: we have a rule to block specific appli
...
Hello all
I'm new in HSM configuration
I configured the setup hardware security module. with a PANOS version 7
the result was success
and in the admin guide is wrote that you have to configured the Setup HSM Partition
but this does exist in the
...
hi,
I have cluster firewalls in versions 7.0.4 but my panorama is in 6.1.2. Ive never upgraded panorama. Any manual??
Should i install the imagen base 7.0.1 to go to 7.0.4 or just donwload?????? its the same that upgrade a palo alto firewall?? any
...
Hello,
is it possible to move policies up and down with Keyboard?
Roman
Has any body have a procedure on how to audit and remove rules? We have alot of what appears to be unused rules so far I disable them, date when I disabled them and then a 30 days and then delete them. let me know if any one has any better method or
...
on:
Need help with Global Protect Internal Gateway
on:
Submit IP to known malicious IP or High Risk IP
