Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- ›
- About Arkadiusz.Adamski
About Arkadiusz.Adamski
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Online
4Posts
1Like
0Solutions
Feb 25, 2021Last Visited
User
Activity
User
Profile
Latest posts by Arkadiusz.Adamski
| Subject | Views | Posted |
|---|---|---|
| 389 | 01-05-2021 03:17 AM | |
| 653 | 12-18-2020 03:48 AM | |
| 739 | 12-16-2020 08:35 AM | |
| 637 | 06-19-2020 03:58 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 | 01-05-2021 03:17 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 | |||
| 1 |
User Badges
Public Statistics
| Date Registered | 11-02-2016 05:09 AM |
| Date Last Visited | 2m ago |
| Total Messages Posted | 4 |
| Total Likes Received | 1 |
01-05-2021
03:17 AM
1 Kudo
Dear Gjenkins, My best wishes in the New Year. Thank you very much for your help and the knowledge you've shared as you've clarified all my doubts. I don't face this issue anymore, but if it will happen again in the future, I'll be reaching out to the PA TAC Support. Thank you and my best regards, Arek
... View more
12-18-2020
03:48 AM
Hey Gjenkins, Thank you for your help. Let me check the links you've supplied, but as I assume if I'll see this happening again the best thing to do is to collect the logs and involve the PA TAC. Let's say the file has been successfully uploaded to WildFilre, the Endpoint does not have any network-related issues, and the file does not exceed 100 MB, so in such a case I should expect the WF verdict and the report within 15-30 min, is that right? I'm wondering how long the detailed analysis and report generation in WF can take time and if there are any other cases when it takes longer to finish after uploading the file to the WF cloud of course (without the things you've already mentioned as network issues, queuing, file size, and sample upload limit ). Best Regards.
... View more
12-16-2020
08:35 AM
Dear PA community members, I've done the research but could not find any info bout the Wildfire limitations nor any issues which could explain why in some cases the WildFire Report arrives with delays. As per WildFire Analysis Concepts: https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-prevent-admin/endpoint-security/endpoint-security-profiles/add-malware-security-profile/wildfire-analysis-concepts.html , *the only limitation mentioned in the documentation is: "Cortex XDR sends unknown samples for in-depth analysis to WildFire. WildFire accepts up to 1,000,000 sample uploads per day and up to 1,000,000 verdict queries per day from each Cortex XDR tenant. The daily limit resets at 23:59:00 UTC. Uploads that exceed the sample limit are queued for analysis after the limit resets. WildFire also limits sample sizes to 100MB. " Based on the documentation WF should be able to deliver a verdict within 10-15 min after uploading the file (PE), which seems to be happening for most of the cases. Unfortunately but for some files, sent for Wildfire analysis after being Prevented (Blocked) on the XDR agent, the Cortex receives the verdict hours (sometimes days) later. The thing is, as per my understanding the wildfire should be able to take just seconds to run the analysis and to generate the report, but for any reason, the Cortex has received it only the next day. Also, I know that as for the Next-Generation Firewalls the signatures will be updated and shared within the next Content Updates, but it's not what I will expect for Cortex / Taps. *Am I missing something here, or it's something for the Palo Alto TAC to check? As additional info, I've noticed that the recent files impacted by this issue have been first prevented (blocked), and on the next day WildFire changed the verdict from "Unknown" to "Benign". Did anyone have similar issues in the past with WF? Could you please advise and point me in the correct documentation? I will appreciate your help to understand this issue. Thank you in advance and kind regards.
... View more
06-19-2020
03:58 AM
Hello everyone, Could anyone advise about how can I configure a GP client (MAC OS device) to get the same IP address? I've found only an option for Widows OS devices, by editing the registry on the client's machine, but unfortunately, I can't find anything similar to MAC OS. Also, I've found the option (2) described in the KB: HOW TO CONFIGURE A GLOBALPROTECT CLIENT TO GET THE SAME IP ADDRESS (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClIMCA0) I have a tiny problem with this workaround, as I understand in the case of multiple MAC OS GlobalProtect agents I will need to create an extra Gateway for each user/machine, right? I want to check with you, if maybe someone had already some experience with it and could advise an alternative solution? *Or do I need to submit the feature request? I will appreciate your help and any good pointers in that mater. Thank you all!
... View more
Latest Blogs
Latest Posts
Copyright 2007 - 2021 - Palo Alto Networks
