ALG (Application Layer Gateway) and Oracle

Hi,

I've an application who has to query an Oracle database to get information from it. There is a PaloAlto firewall between my application and the DB. 

I actually reach the database, but I can't collect the information that I need. Making a quick tcp

Block Cyberghost IPs

I see a lot of threat (thousands in a few minutes) to one of my webservers from IP 176.10.115.140.

This IP belongs to cyberghost, so probably someone used this to hide his own IP and attack our webserver.

Is there a way to block this traffic (before th

Archive of Release Notes for Dynamic Updates?

Hi all,

Is there an archive of release notes for dyanmic updates?  I've just discovered that a firewall I inherited has a very old version of the Application version.  I'd like to determine just how old it is (so I know how much chaos I'm going to ca

Tagged subinterface in different zone than parent not working

So up to this point I'd only been using tagged sub interfaces for capacity\housekeeping\etc,  so they were all in the same security zone.  Now I have a case where I'd like to be able to add some rules to where traffic from this new VLAN can go.. 

I pu

Panorama License Upgrade

I am currently running Panorama with a 25 device license limit, and I have purchased and need to upgrade to the 100 device limit. It seems the auth code for the 100 licenses is the same as the auth code for the 25 licenses.

When I go to Panorama, Lice

customize widgets of the GUI

Hello everybody,

one of my customers wanted to expand the size of certain widget. for instance , system log panel, since they don't see the GUI at any time everyday. some of logs would be missed.

do we have a way to expand the widget's size and have i

license transfer failed, device now stuck

Hey out there

I have had a failed attempt at transferring a license to a spare device. 

The original device is still listed, with its licenses in tact under "devices", however the spare device no longer shows up in the "spares" list, it is in the dev

How to prevent GlobalProtect default route overwriting local static routes?

This is using PAN-OS 8 in AWS.

We have a site which has multiple networks attached. Users from the "main" network (let's call it 1.1.1.0/24) can also access 1.1.2.0/24, 1.1.3.0/24 via the default route supplied by the DHCP server, which goes to our c

Palo-Alto NGFW to Barracuda NGFW Site-to-Site IPSec tunnel

Hello,

Is there any guide available for creating Site-to-Site IPSec tunnel between Palo-Alto NGFW and Barracuda NGFW?
A generic guide would do the job.

I could go through the generic Phase1 & Phase2 configurations and troubleshoot from there but would