This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Start a conversation

Many system event about "ha2-link-change" that made HA2 status was down from 23:02:35 (19/Nov/2022) until 17:29:11 (20/Nov/2022) ,HA2 status is Up

Hi Guys,

 

      During weekend I found many system event about 'ha2-link-change' on Firewall event that was generated more 1400++ events/periods and send more email notification.
This events was occurred for 2 periods that made HA2 status was down fr

...

Jirapan by L1 Bithead
  • 1439 Views
  • 2 replies
  • 0 Likes

Resolved! Palo Alto GlocalProtect VPN

Hi All,

Currently, we have Palo Alto global protect VPN client ver 5.x. Can we upgrade to VPN client 6.2 directly from version 5.x?

 

Also, does VPN client 6.2 supports PAN-OS 9.1.16? (This is the machine we are running GlobalProtect Portal and Globa

...

Fortinet Pre-authentication Heap-based Buffer Overflow Vulnerability (CVE-2023-27997) is covered in Palo Alto NIPS Signature ?

Hi all,

 

Can I check with you the following Fortinet Pre-authentication Heap-based Buffer Overflow Vulnerability (CVE-2023-27997) is covered in Palo Alto NIPS Signature ?

If yes, May I know which released signature version and threat id is covered f

...

http-req-user-agent-header

Hello,

 

SSO is requesting to me to add a rule on policy to alert http request without user-agent (empty) on header.

i know I can use vulnerability by adding a condition when « http-req-user-agent-header » is equal to a regex. 
i tried to use the rege

...

Using XFF for Logs Only

Hello,

 

I have an application behind a WAF, without XFF the source IPs are always my WAF and for auditing reasons I need to get and log the real client IP addresses.

 

Traffic flow is like this:

 

Client -> WAN -> NAT -> DMZ - App Server

My security

...

  • 942 Posts
  • 35 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks