App-ID Override Policy Matching

Is there a way to identify what traffic is hitting a specific App-ID Override policy?

We have several poorly configured App-ID override policies I'm trying to clean up and consolidate but they override to the same custom application, and it is not

Advance URL filtering - License - error "License required for URL filtering to function"

Hello team,

I have a valid advanced URL filtering License - but when i navigate to URL filtering it says error "License required for URL filtering to function"

Do i need to get PAN-DB url filtering license too ??

or is there some setting which

Antivirus updates failing 9.1.15

Hi All.

I am having issues where the antivirus updates are not checking the servers nor downloading.

I have a valid advanced threat license and an expired threat license.

Background running: 9.1.15

Observations:

Content updates are functional a

Please Release App-IDs for IBM AS400 user traffic

Hi,

we have noticed traffic from users connecting to mainframes/midranges is showing as "unknown-tcp" and "insufficient-data" for the following ports:

TCP/449 (Server Mapper)

TCP/8470 (License Management)

TCP/8471 (Database Access)

TCP/8475 (Remo

PAN to rsyslog on Ubuntu 22 yields unusable file names

Hi.

I have a default setup w/ Ubuntu 22 as a rsyslog server. I pointed my PAN 10.2 to it, and am getting log data, but I am not getting a usable / meaningful file name. I'd like the log file name to be something like "perimfw" or some such to start.

Palo Alto ALG (Application Level Gateway) SIP dissable just for a particular source and destination IP addresses in a Security Policy?

Hello to All,

From what I read about ALG (Application Level Gateway) functions on the Palo Alto Firewalls this function if needed is disabled globaly for the SIP default application or with application overide policy but this will stop the SIP si

Palo Alto PA 5220 not login after password complexity changes

We changed the password complexity and history settings on our firewall a couple of days ago. After committing the changes the local users are not able to login on the firewall. So we tried to boot into maintenance mode by connecting through a consol

SSL/TLS decryption

Hello

I would like to configure my Palo Alto to decrypt SSL/TLS inbound/outbound traffic.

For Inbound, it's to control the traffic from Internet to our internal Web servers. Our internal Web servers is based on Apache or IIS with SSL. The certifi

Remote Admin via ISP connected interface

I have a PA-440 that I need to be able to manage via it's ISP connected interface.  I did the intial setup via the MGT interface but when I had the device moved to it's permanent location, which is not connected to our WAN, I cannot get the login web

Whether configuring Vsys will make firewall more secure or not

I would like to know advantage and disadvantage of implementing Vsys. 

in an environment , we are able to configure our firewalls with vsys or without vsys. 

Would also like to know whether configuring vsys will make firewall more secure or not ?

Unable to take passive firewall access.

We tried changing the cable, switchport and VLAN and also connected the Management Interface directly to a laptop. There was no SSH or HTTPS access possible

We also tried to restart the Management and Device Server and other related processes on the F

Traffic Distribution methodology

We have 35 PA firewalls all using SD-WAN and have (typically) the following configuration for WAN connections...

100M TC4 Internet

20M TC2 Internet (best quality)

5G Cellular Internet (always on)

We have the following traffic distribution profile