Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Resolved! Security Policy

Hello,

 

I have created a security policy with the below details. I am the hitting following URL https://10.x.x.x:15671 and I see the 'connection is reset' in the browser. I see traffic is hitting the policy (Hit count) but it's not logging. When I s

...

srikarpuligandla_0-1701627610318.png
srikarpuligandla_1-1701627668060.png

URL Filtering to block Facebook

Hi all,

 

I been testing to do URL filtering with whitelist approach (allow some URL and block everything) and also create SSL decrypt policy. As I was checking, it seems like not working to block facebook. I check in the test a site, Facebook fall u

...

Momoj by L2 Linker
  • 5977 Views
  • 3 replies
  • 0 Likes

MSIntune All IPv4 missing IPs

Hi,

 

what can i do when i find IPs in PA Log thats missing in the official in the EDL Hosting Service IP/ URL Lists?

The following  IPs are not in die Microsoft 365 "Worldwide Any IPv4" and not in the "MSIntune All IPv4" Lists.

 

URL:

intune.microso

...

DLP on PAN-OS Firewalls

Question about the DLP on the NGFW's. I have a customer that's interested in enabling the feature but it looks like this is a cloud based DLP (reports back to Palo Alto's cloud and you manage the DLP features from the cloud), is that correct?

Locally

...

Team call issue after Failover

We have a dual ISP setup.

Both ISP's terminate on single firewall.

We are doing ebgp with both ISP's and having default route accepted from both.

We advertise our public IP to both Peers and use 1 ip from that subnet as egress IP for all internet tra

...

Nischal by L2 Linker
  • 903 Views
  • 1 replies
  • 0 Likes

High latencies after HA failover

Goodmorning, i have a cluster with two PA3060 running panos 9.1.16.
We are about to upgrade to 9.1.16.H3 due to certificate expiration.
I had already updated the Secondary (passive) node to 9.1.16.H3 without issues 1 days before .
 
The second step w
...

Netadmin by L0 Member
  • 712 Views
  • 1 replies
  • 0 Likes

MS-Update identified as a threat, there are no corresponding entries in the threat logs, URL filtering log or data filtering logs

Hi team,

 

Although MS-Update was flagged as a threat, there are no corresponding entries in the threat logs, URL filtering logs, or data filtering logs explaining the basis for its classification as a threat

The first three logs indicate that the

...

AkashThangavel_0-1701248564919.png
AkashThangavel_0-1701250741984.png
  • 1432 Posts
  • 49 Subscriptions
Top Liked Authors