Idea to use Palo Alto for IDS replacement

I have a idea to use the Palo Alto Firewall Vulnerability Protection Profile has a IDS sensor. 

Here is the idea I have what to run this by anyone. Also need help to know if this will work. 

Vulnerability
vulenerability Protection Profile
Create a Rule
R

Intermittent SSL

SSL traffic stops after about 45 minutes and is restored in about the same time frame (maybe longer). Firewall is not configured to decrypt. HTTP traffic has no problems. Just deployed (test network) low use firewall (3050) running 7.1.7.

Drop_update

Hi,

I've just created a new node and I'm seeing events such us: DROP_UPDATE on aggregator type. 

My miner has all domain list but the aggregator has this meessge with "drop_update", do you know it??? Why???

Thanks a lot

MineMeld not updating Office 365 IPs or URLs

Hello Everyone,

Two days ago I installed MineMeld so that we could use it to "mine" the Microsoft maintained XML for the latest Office 365 IP addresses and URLs.  The first night It appears it worked as expected.  However, I have not been able to g

Upgrading Panorama

Hi Guys,

I'm planning my panorama upgrade from 6.1.8 to 7.1.x, before starting with process, i want few doubts to be cleared.

1. My firewalls are still on 6.1.8, as per the PaloAlto documentation, after upgrading Panorama, it won't effect firewalls a

quizizz.com mobile website will not display pictures - app-id blocked as snapchat

We have teachers trying to use the website quizizz.com and the kids can't view the pictures on their phones, the questions come through but not the images.  The desktop version works fine.  When I check the firewall logs, it shows an app-id block for

Configuring multiple OSPF areas with a single L3 interface

I am trying to redistribute EIGRP routes from two AS numbers into OSPF so that my PA can learn the proper routes to the rest of the network, but I am running into a stumbling block since I only have one L3 interface connected to my internal network a

BGP routing question.

I have multiple sites (50+ tunnels) doing ebgp with palo alto(VM-100). So PA is learning smaller subnets from all sites which are known to each other by bgp.

Additionally connected aws doing ebgp which is all good. But number of bgp routes advertised

Skype, teamviewer and file transfers

Hello community,
I know that this topic was discussed many times, but the issue is still relevant.
Is there any possibilties to block only file transfers in applications like Skype or Teamviewer?
APP-ID don't have these specific subapps and file blockin

abort a commit

My Pa shows that a commit is waiting to be done and I don't want the changes to occur can it be aborted? I know I can cancell a commit but if I don't want to commit a change but I don't want it to stay in a state of needing to be commited what are my

PA QoS

Hello

Can anyone point me to some docs / urls on how to setup QoS on PA 3000 serise appliance.

I would like to "choke" traffic from one specefic subnet transversing the PA