General Topics

Strange Behavior with SIP traffic related to ALG

I'm running into an issue where specific NAT and Security policy names or numbers change then the SIP traffic stops working. I found that if I clear the sessions post change then everything starts working again. I believe this is related to ALG, lik

Packet Capture filters not correct

I have a problem once in a while where packet capture filters are not working.  I set up the filters at one point and if I delete the filters and set up a new filter.  Turn packet capture back on and it still gives me captures of the old filter.  I c

How to copy from just the right side of the Preview Changes diff window?

In PAN 6.1 if I go to Commit and click Preview Changes - I have the old on the left and the new 

on the right. The problem is that I want to copy the text from the right side of that screen 

and not the left. Is there any handy trick that would allow m

Getting old PA-200 back in IT life

Hello

i inherited on PA-200 on my new job and want to get it back on IT life. While booting i observed the CLI and this is what i got. Needless to say i have no responces to any command entered.

Is anyone abel to provide some info how to set it up agai

Traffic Logs - Multiple IP's

Hi,

Is there an easy way to monitor traffic logs on say 20 IP's to see if any IOC's are being hit? I'm guessing I could build a filter for each IP but I was hoping there might be a way to do it easier. These are not contiguous IP's so CIDR won't help

PAN-OS 8.0.2 URL logs not showing up

Hi guys,

I'm running a new PA-VM-50 on 8.0.2 within Esxi.  The VM is fully licensed and has all the latest dynamic updates and URL filtering db.

VM License - VM-50
VM Mode - VMWare ESXi
Software Version- 8.0.2
GlobalProtect Agent - 0.0.0
Application Vers

SSL decryption for email

Hi,

Do we need to enable SSL decryption simply for reading SMTP messages?

We have created a profile under Objects and attached it to incoming mail policy but attachments with extension dll, bat, exe file all get through and see nothing in Wildfire su

Config .XML in the config bundle is empty

Hi everybody!

I have a little issue with which maybe you can help me: I have a HA with a pair of 3060s among other FWs managed by a Panorama, when exporting a config bundle from the Panorama, the config XML file for the pair of 3060s is empty. What

Panorama VM - 8.0.x - How long can we run in Legacy Mode?

We currently have a Panorama virtual machine with 2TB of storage runnint 7.1.x.  I know there are changes to the log database in 8.0.x.  We also have some newer PA firewalls that only run 8.0.x, so we would like to upgrade Panorama.  How long can we

Check patchs installed HIP

Hi,

We configured the HIP module in Palo Alto but is not able to detect patches installed on Global Protect clients sometimes.
There are clients, connected to the VPN GP that if it is able to see the patches, in contrast there are others that does not

How to find source of high open sessions and/or throughput

If your Palo Alto firewall is experiencing an unusually high OPEN session count, and/or high throughput, what is the best way to determine the source or destination at the same time of the event?

We have most of our security rules set to log at ses