Is there a way to report or trigger email notification for correlated events?

I'm working towards generating some reports for our other IT departments and I noticed the correlated events have some really nice information that might indicate when someone is infected with Malware.  I'd like to get that information over to our de

Filtered OSPF

I would like my PAN 5060 to learn one route from my OSPF infrastructure generally - but no others. The idea is that when this route is availalbe traffic would flow to the inside trusted interface of the PAN. But if that route drops out due to WAN cir

Centralized User ID Agent to All firewalls with AD integration

Dear Community,

Kindly note that we would like to achieve AD integration through centralized user id agent ,in that all of the firewalls will have userid agent which is integrated with AD.

So basically userid agent work as a proxy, How this can be ac

SSH Brute Force and IP exception

I have vulnerability profile with action for High severity signatures as "alert".  I then configured an exception for SSH Brute Force (ID 40015) as "block-ip, src and dst (30 mins)". Everything worked well until we had issues for the systems exiting

NTLM authentication problems

Hello,

I`m trying to configure NTLM Authentification over Captive Portal for users in my network. I have PA-500. I set the next configuration parameters:

1. LDAP Server Profile

2. Authentication Profile

3. Authentication Policy (Authentication enforcemen

Logs not appearing in WebUI (likely nginx configuration fault)

Let me preface this by saying that I'm awre i've introduced this fault through my own modifications (and lack of experience with nginx). That being said I'd appreciate and insight into how I've broken this function.

Symptom is that the 'LOGS' tab on

Pan-OS 8.0 and PA-200

Has anyone upgraded a PA-200 to PAN-OS 8.0? If so have you seen a performance hit at all? Notice a difference in how long things take? Commits? Response time? How long did the upgrade take? Did it take the 50-60 minutes Palo says? If so is that sitti

BGP peers transit sessions flapping

Hi Guys,

PA-5050 is a transit device for four BGP peers. Had no flapping since 2015 on PAN-OS 6.0.12. After upgrade from 6.0.12 > 7.0.11 BGP peering no longer stable:

Can anyone advise something? Apart of the increasing a timeout session under the a

GlobalProtect Patch management Issue

Hi everyone,

We have a (HIP) check list of security requirements (joined domain, antivirus version etc… ) for our user machines must be comply with this list before our VPN user can access corporate servers. 

We want to add Microsoft Patches (updates

MineMeld sudden_death...how does it work?

I need some help understanding the sudden_death behavior with a MineMeld miner/prototype.

From the documentation[1], I understand that sudden_death is designed to immediately age out indicators when they disappear from a feed.

Is it comparing the cur