Security Policy for SSL & Web-Browsing only

Hi,

I was wondering, is it bad practice to create a security policy with only the applications SSL & Web-Browsing in it? Ensuring best practice security profiles are on the policy as well.

I've tried searching the web for suggestions and might be

About Correlation Object Detection

Attention: JAPAC TPM team

I would like to know the following about Correlation Object (Beacon Detection) event generation.
We recognize that Beacon Detection defines how many times a malicious activity (e.g. access to threat URL) in a given period o

Ikev2 site to site vpn between pa and cisco asa

temporary security measures for all users.

msdphi
Messages
Notifications

(English) USA
Get Started
Discussions
Blogs
Articles
Products
Tools
Education Services
Member Recognition
Podcasts
Customer
Partner
Employee
ikev2 site to site VPN between PA and ASA
Search this

Agentless User-ID issue problem - AD Local Security Policy incompatibility

Hi, I was trying to set up an agentless User-ID configuration when I ran into this issue: my AD Local Security Policy has deny log on locally for Event Log Readers and Distributed COM users set up. For company security reasons, I cannot change this p

Upgrade PANOS to preferred version

Hi guys, Has anyone upgraded the firewalls to 10.2.10-h7?

I'd assume you will get the caveat below after upgrading to 10.2.10-h7? Would you rather wait?

Migration to PAN from Cisco

Hello everyone,

I am newbie to PAN Firewall. Sorry that I haven't got much experience on Firewalls.

Currently we are in the middle of the migration as from the Cisco ASA with Firepower into PAN 1400 series. Have done some NATs and Security Policies mig

The difference between the values ​​shown in ACC and Live Session is too large.

Hi

I recently discovered something strange while checking a customer's firewall.

The customer firewall's session count typically has a count around 1.5 million.

But the firewall ACC shows a figure of 4 million

I know that ACC is not a real live c

How can I block browser extensions (VPN)?

Greetings and happy new year.

I have seen that from my internal network people use VPNs that are installed as extensions in the Google Chrome browser (veepn) to circumvent the URL Filtering of the FW.

Does anyone know how to block these extensions?

I

PAN OS 11.1.4 h1 issues

The customer upgraded the PAN-OS to version 11.1.4-h1, but their MPLS link is down, similar to an interface port issue. The same problem occurred with versions 11.0.0 and 11.1.0, but on version 10.2.10, the MPLS link worked fine. The customer has man

Phishing email? - Important: Palo Alto Networks Informational Security Bulletin

I just received what looks like an official PA email which suggests I visit (which appears to be legit)
https://security.paloaltonetworks.com/PAN-SA-2024-0015

For important security information about how to configure my management interface.

Yet when

Not able to download PCNSe certificate and badge?

Hello Palo Alto Team,

Todays, I have successfully completed PCNSE certificate. But not able to found on palo alto portal . Are we need to integrated certificate with palo alto portal. And any benefits, when I integrate it in portal.

Thanks

Yogend

Where to add Proxy ID with multiple tunnels?

Hey all,

We have 3 firewalls:

C1 = Cisco FW - Policy based S2S VPN -- subnet behind it 10.1.0.0/24

P2 = Palo FW - Route based S2S VPN -- subnet behind it 172.16.50.0/24

C3 = Cisco FW - Policy based S2S VPN -- subnet behind it 192.168.20.0/24

We hav

HA Configurations in Strata Cloud Manager (SCM) with NGFW.

Good Day fellow techies

I am writing this article because I was very confused at the SCM tech writing of the Admin Guide, in regards to HA.

I REALLY tried to follow along with the steps, but could not understand.  I think I am not the only one.

S