Next-Generation Firewall Discussions

Firewall crash after executing this command : debug dataplane show dns-cache print

Hello,

After exceuting this command :

My firewall crashed and failover happened.

I saw in the in the failover this error : "non-fonctionnal (Dataplane down :  path monitor failed)

After firewall restart and s

FW stops forwarding files to WF 500

Hi,

We have a PA-5250 that suppose to send files to a WF-500 appliance.

Both are at 10.2.3 version.

The FW suddenly stopped sending file to our private wildfire cloud.

When we checked the "wildfire-upload.log" we see the following:

"cancelled - first

Log Subtype

Hi All,

I need some information on checking the logs. I see few things like END, DENY, SPYWARE, INFORMATION etc and in the action we see it as allowed. But the access will not be working. May i know what this Log Subtype means and what information wi

Webex issue with Mobile Users

Hi All,

We are facing weird issues with Mobile users accessing the Webex Phone Services. Wifi users connecting to laptop doesn't face any issues. But when the phone is connected to Wifi users are unable to access Webex Phone Services. Not really sure

Palo Alto Networks next-generation firewalls Threat prevention signatures

Hello.

Please currently i'm studying the Palo Alto Networks next-generation firewalls Threat prevention module, and 'm interested in the list of the available signatures (description, severity ranking, Threat type, ). I found that threat vault can

Syslog config on Different Port

Hi All,

We have configured different port for syslog in the PA-460 firewall. 

Server Profile > Syslog > Name, Syslog server, Transport, Port(Here we used different port than default 514).

But we can still see the syslog traffic is being generated wit

Unable to create a support account

I want to register one new PA-220 firewall.  I need to create one Palo Alto support account, however, I failed to create it.

1. I input my email address

2. All contact information

3. Serial Number of the PA-220 firewall

4. Order Number.  I purchased

firewall config changes

Hi Guys,

Do you know how to track config changes for a specific firewall in panorama? please advise . thanks

Firewall servicing as UserID Client - limit

Good Morning,

Searching for a PA doc I found a while back and my google-fu is failing me.  Looking for the documented limit of clients who can connect to a PanOS device acting as a redistribution agent.  I'm positive I saw 1000 at one point a few y

After an upgrade to version 10.2.3 h4 I got this message: 2023/03/08 20:52:23 info     general        general 0  Received conflicting ARP on interf

After an upgrade to version 10.2.3 h4 I got this message:

2023/03/08 20:52:23 info     general        general 0  Received conflicting ARP on interface ethernet1/4 indicating duplicate IP 172.16.0.1, sender mac 00:50:56:92:cd:0c

And this address i

No DPD message while peer tunnel is down

• Problems with IPSEC VPN tunnel between PAN FW PLWALFWxx and the BlueCoat datacenters (Amsterdam, Frankfurt)
• DPD does not seem to work.

• Extra Information:

   

  PLWALFW = PANOS 10.2.2.h2

  INTERNET FW = PANOS 8.1.x

   

  We have IPSEC tunnels between our PAN FW

PXE network Environment

In a PXE network, the PA firewall is deployed between the client and the DHCP server and the WDS server The PA enables the dhcp relay, but the client cannot get ip from dhcp server. i doubt  that pa drop the boot protocol  packet.becacuse that the PA

How to Test a Vulnerability Protection Rule

Hello Everyone,

I have a use case that I’m trying to test in a lab, but I can’t figure out how to perform the test, and I’m looking for guidance.

My use case is to drop traffic if the firewall detects certain CVE vulnerabilities in the traffic. My

I need answer for this question .

Q1.

Which two configuration objects will allow servers from different operating system (OS) types to get package updates from a given domain? (Choose two.)

Select 2 Correct Responses

• A. Static IP address objects for every server, grouped together by