Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

All OSPF neighbors suddenly down

Hello all,

 

Customer has a problem were their PaloAlto suddenly declares all neighbors adjacencies down, after that the PaloAlto will do a grateful restart and the OSPF neighbors will change to init, and then go full again, this OSPF flapping lasts

...

JMBerzal by L1 Bithead
  • 946 Views
  • 0 replies
  • 0 Likes

App-ID Override Policy Matching

Is there a way to identify what traffic is hitting a specific App-ID Override policy?

 

We have several poorly configured App-ID override policies I'm trying to clean up and consolidate but they override to the same custom application, and it is not

...

Antivirus updates failing 9.1.15

Hi All.

 

I am having issues where the antivirus updates are not checking the servers nor downloading.

 

I have a valid advanced threat license and an expired threat license.

 

Background running: 9.1.15

Observations:

Content updates are functional a

...

Old-Roo by L1 Bithead
  • 1201 Views
  • 1 replies
  • 0 Likes

Palo Alto ALG (Application Level Gateway) SIP dissable just for a particular source and destination IP addresses in a Security Policy?

Hello to All,

 

 

From what I read about ALG (Application Level Gateway) functions on the Palo Alto Firewalls this function if needed is disabled globaly for the SIP default application or with application overide policy but this will stop the SIP si

...

SSL/TLS decryption

Hello

 

I would like to configure my Palo Alto to decrypt SSL/TLS inbound/outbound traffic.

 

For Inbound, it's to control the traffic from Internet to our internal Web servers. Our internal Web servers is based on Apache or IIS with SSL. The certifi

...

  • 800 Posts
  • 31 Subscriptions