Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.
About Next-Generation Firewall Discussions
Palo Alto Networks Next-Generation Firewalls provide true, complete visibility everywhere, along with precise policy control. Ask your questions or provide insightful answers in the discussion forum specific to NGFW.

Discussions

Welcome to the Next-Generation Firewall Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4636 Views
  • 0 replies
  • 1 Likes

Palo Alto PA-3400 Series degraded specs vs 3200 Seires

Dear Palo Alto CommunityIs it just me, or did Palo Alto drop the ball on the new PA-3400 Series, while almost all specs gained an improvement over the old 3200 series. There is the value of Security-Zones that has me deeply confused/puzzled. For the sticker price (whether it is list price or street price). Having a PA3410 with a max of 40 Securi...

PA-comparison.png
PA-3400-performance.png
AlexNC by L3 Networker
  • 10803 Views
  • 4 replies
  • 1 Likes

Resolved! Suspicious Code in GIF File Detection - Logic of Detection

Good Day Team! I hope You are all doing well! We have a detection re: a remote ip attempting to connect to a certain server which hit the rule Suspicious Code in GIF File Detection. We have blocked the ip, however, the detection has: Threat Category: downloader PA Subtype (custom): spyware wherein we are currently in a dilemma if the former reme...

Palo Alto and Forescout

Hi, I have both Paloalto firewall and Forescout in our organization. This is my current setup. 1.) Forescout handling the grouping for our wireless devices (BYOD). 2.) Paloalto policy is incorporated through user mapping (Active Directory) 4.) I already setup the connection between the paloalto and forescout. Is it possible that the wireless d...

bundle gre tunnels and distribute internet traffic across them

Has anyone had a location with more than 1Gbps internet link and also have Zscaler? The limitation to Zscaler is 1Gbps gre tunnel. We have a 10Gbps link and this doesn't work. We have to create 5 nats across 2 routers behind a firewall to build 10 GRE tunnels. I wanted to do something similar at the edge with palo alto but i am not seeing what i...

Resolved! Palo Alto in Virtual wire vs TAP mode.

Hello,Just wanted to confirm my understanding on the different modes of deployment in PA. Virtual Wire is an INLINE mode ( similar like IPS) and TAP mode is a passive monitoring mode. So does that mean if I find an unlocked rack somewhere and I were to remove the ethernet from the switch/firewall in that rack and instead attach it to lets say et...

Outlook web excessive bandwidth usage

Hello, We recently noticed starting last few weeks that application (outlook-web-online) had a massive data being sent and saturating our internet link. This looks to be across the network as we can identify multiple users with same application traffic being the top bandwidth consumers when we generated the custom report. Does anyone exper...

Marconi by L0 Member
  • 2505 Views
  • 2 replies
  • 0 Likes

Policy Based VPN

All,We are migrating Policy based VPN's from Juniper Netscreen to Palo-Alto firewall. Please let us is Policy based VPN will be supported in palo-Alto , if not how we need migrate the Policies of Policy based VPN.

Sujanya by L3 Networker
  • 14045 Views
  • 3 replies
  • 0 Likes

Whatsapp File transfer Block

i work as a security specialist engineer at a moderate enterprise.recently my superiors have asked me to block whatsapp file transfer only(meaning chat would still work).however i've tried anything using our Fw's but to no avail. from what i have read on some forums and various sources, i need to url block mmi.whatsappmms and mmv..i tried doing ...

High Bandwidth Utilization & Data Plane Restart

We have a 5220 running 9.1.12-h3, and it has a 10 Gb vwire with multiple VLANs configured with managed switches on both sides. There was a 13 Terrabyte copy across this vwire, and then as that was finishing, there was a 3 Terrabyte data copy. Both were sources from the same side of the vwire, and both towards (destination side of vwire) servers ...

Resolved! Advanced threat protection_Deep Learning

Hi, PAN OS Version 10.2 support Advanced threat protection and its seems like , for any unknowns the metadata will be forwarded to cloud for deep learning mechanism (Correct me if i am wrong). My coroners are how can we check what details has been uploaded to cloud for deep learning? what action that firewall will take until the verdict is ret...

  • 1597 Posts
  • 61 Subscriptions
Top Solution Authors
Top Liked Authors