If I add whitelist for firewall, will IPS not defend against the IP or URL in the firewall whitelist?
Have you encountered this phenomenon and how should you solve it?
Thank You,
Nassim
Hi team,
I have inbound ssl decryption enabled with User Insertion feature enabled too. It is working fine, however when I make a POST request from Postman Application with header "Connection" and value "keep alive" is present the user insertion fa
...
trying to establish S2S VPN between Palo Alto 850 and Checkpoint SMB
Certificate based authentication (MS enterprise CA)
The ikev2 is complaining :
====> Initiated SA: XXX.XXX.XXX.XXX[500]-YYY.YYY.YYY.YYY[500] SPI:dcb4c37f6f955782:0898ce67edab9913
...
All,
We are migrating Policy based VPN's from Juniper Netscreen to Palo-Alto firewall. Please let us is Policy based VPN will be supported in palo-Alto , if not how we need migrate the Policies of Policy based VPN.
i work as a security specialist engineer at a moderate
enterprise.
recently my superiors have asked me to block whatsapp file transfer only(meaning chat would still work).
however i've tried anything using our Fw's but to no avail.
from what i have rea
...
We have a 5220 running 9.1.12-h3, and it has a 10 Gb vwire with multiple VLANs configured with managed switches on both sides.
There was a 13 Terrabyte copy across this vwire, and then as that was finishing, there was a 3 Terrabyte data copy. Both we
...
Hi,
PAN OS Version 10.2 support Advanced threat protection and its seems like , for any unknowns the metadata will be forwarded to cloud for deep learning mechanism (Correct me if i am wrong). My coroners are
Setting up a path monitor on a static route where source is a tunnel interface.
I am able to ping from CLI with tunnel interface IP as source. But the route does not get installed.
ping source 10.0.0.1 host 4.2.2.2
PING 4.2.2.2 (4.2.2.2) from 10.0.
Hello,
As per the question, should we enable these features if we don't use SSL decryption. And also, we want to enable it on our Firewalls as well as our Prisma Access rules.
I am new to Palo Alto firewall. I have loaded Pan-OS 9 on eve-ng and connected one of it's port to router. It is layer three connectivity and have assigned ip to both ends. However I can't ping the firewall interface. OSPF neighborship is also not fo
...
Hello Team
When setting up a tunnel monitor
1) Can we monitor the remote encryption subnets?
2) Is there a way to failback to the primary tunnel when it recovers ( after failover to the secondary tunnel )
Thank you
NGFW
...
I might be overlooking something fundamental.
We are trying to slow-step out of another firewall into a PA. I have created an interface on the PA in the old subnet. I can ping across to the server and old firewall.
Clients behind the PA cannot ge
...
OtakarKlier
on:
Minor patch release date for 11.1.8
BPry
on:
Compatibility of New GlobalProtect Client with Older Firewall/Prisma Access Versions
BPry
on:
Software Version 11.1.5-h1 commit issue
BPry
on:
Custom URL Category Not working Properly
