General Topics

How to block TCP22 connections

Hi everybody

I like to know if there is a way to block incoming connections attemps to port TCP 22.

I have an end-customer which has lots of connections to his public ip range 0.0.0.0/24 to port TCP22 but not hit the vulnerability 40015 (SSH User Aut

what exactly is tcp-reuse and does it sends session closure traffic to the client and server?

hey

hey

we have some problem with old system that are beeign stuck after some tome it is working and on the logs we see the session end reason is "tcp-reuse" my questions are:

1) what should be happaning on the network flow for this end-reason log to a

Research paper shows vulnerabilities with SSL interception

On Feb 2017, some universities, Mozilla, Cloudflare, and Google released this paper on corporate and desktop HTTPS interception.

First they figured out how to identify when someone connects to a web server through an SSL interception appliance. Then

CLI debug pcap verbosity levels

I've been using the cli debug pcap captures for a number of issues recently but was frustrated in the last one by a lack of detail. In this case I was capturing OSPF (debug routing pcap ospf on). When I viewed the capture it looks more like a summary

Miner Data Priorities

Is there a way to have MineMeld prioritize miner data once they get to the output stage? Since some output feeds may be too large for certain firewalls, I want to ensure that our static blacklist is always at the top of the list. Currently new additi

How to configure Syslog to send a CEF in PAN OS 7.1.3

I had found this article for CEF on PAN OS 6.0.0

https://live.paloaltonetworks.com/t5/Configuration-Articles/PAN-OS-6-0-CEF-Configuration-Guide/ta-p/59938

Do the same rules apply for PAN OS 7.1.3? 

I would need to add "CEF:0|Palo Alto Networks|PAN-OS|7

User-ID 8.0 - PKI Setup?

Anybody seen any specific directions on how to setup the new PKI enteprise certs in UA 8.0 beyond the fluffy "whats new" feature section.

Also what is the different between UAinstall and UAcredinstall ... Release Notes are silent.

How to view Panorama related config applied locally on FW

Hi,

When you locally export the config of a firewall managed by panorama, only local config statements are visible.

would be very interesting to know how you see the whole configuration ( the one related to panorama and the one locally related ) direc

Panorama Packet Capture: "File Not Found"

I noticed when trying to open a packet capture in the GUI by clicking the green "down" arrow I get the following error message: "File Not Found". This happens for every capture I try to open with the green arrow in PANORAMA. 

The packet capture opens