Network technologies and trends:

Palo Alto Networks


March 31, 2017  6:43 PM

Palo Alto Networks Next-Generation Firewall wins SANS Best of 2016 Award

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Automation, Cyberattacks, Palo Alto Networks, platform, SANS, survey, Vendors

SANS institute conducts a survey every year among its community for nominations of the SANS "Best of the Year" awards for  products and services that have successfully provided increases in both the effectiveness and...

March 30, 2017  5:19 AM

Cisco ASA VPN troubleshooting  – Decaps but No encaps

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, bug, Cisco ASA, Cisco VPN, firewall, NAT, Palo Alto Networks, Policies, Proxy, Troubleshooting, tunnel, VPN

Recently we observed a strange issue while building a site to site VPN tunnel between a Cisco ASA [9.1( 5) ] and Palo Alto Next Generation firewall.(PAN-OS 7.0.9) It was observed always phase 1 part of tunnel established successfully with peer however phase 2 failed to come up. Always we were...


February 8, 2017  7:19 AM

Palo Alto Networks launches PAN-OS 8.0

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
AWS, Azure, cloud, Cyberattacks, Data Center, Firewalls, GATEWAY, Internet, KVM, NSX, OpenStack, Palo Alto Networks, Phishing, Private Cloud, Public Cloud, SaaS, Sandbox, VM, VMware, Wildfire

On February 7, 2017 Palo Alto Network launched PAN-OS 8.0 with more than 70 new enhancements and capabilities which can prevent successful cyberattacks.


February 7, 2017  9:13 AM

Apple iOS 10.2.1 and Palo Alto Global Protect issues

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
"Apple Store", Apple, GATEWAY, IOS, Palo Alto Networks

The recent Apple iOS 10.2.1 update has created an issue with Palo Alto global protect agent for iOS devices. Its been observed that the Palo Alto Global Protect client hangs and never opens. The only way one could open a Global Protect client is uninstall and reinstall it. Once the client is...


February 26, 2016  4:28 PM

Palo Alto Firewall with PAN-OS 7.02 have issues with OSPF

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
firewall, OSPF, Palo Alto Networks, router

When it comes to Palo Alto Networks Firewall, we all know PAN-OS 6.x is a quite stable version, Palo Alto announced PAN-OS version 7 almost 8 months back,  but I see very few people are using this version of PAN-OS. Those who are considering  a migration from PAN-OS 6.x to PAN-OS 7.x  they...


February 13, 2016  8:40 AM

How does Palo Alto Networks Firewall examines an UDP Packet to identify an application?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
application, Application firewalls, DNS, firewall, Next Generation Networking, Packets, Palo Alto Networks, UDP

In the below example, a single DNS query packet is trying to query  the domain www.yasirirfan.com. This packet contains all the information needed by a Palo Alto Network Firewalls to identify an app,  by inspecting the below UDP packet it can determine


January 31, 2016  5:26 AM

What are Address Objects in Palo Alto Networks Next Generation Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, FQDN, HA, Interface, IP range, IPv4, IPv6, Layer 2, LAYER3, Loopback, objects, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

Like all other firewalls , Palo Alto Networks Firewall supports Address objects. These Address Objects are basically named objects which can be configured on a Palo Alto Networks Firewall . The address object can include an IPv4 or IPv6 address or the FQDN. The address can be configured based on...


January 20, 2016  5:29 AM

How to configure log forwarding in Palo Alto Networks Firewall? – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, logging, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

In this post we will continue the configuration of log forwarding in Palo Alto Networks Firewall, in previous post we saw how to add a Syslog Server...


January 20, 2016  5:21 AM

How to configure log forwarding in Palo Alto Networks Firewall? – Series 1

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, logging, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

We all know the importance of having historical logs for any references or forensic analysis. I have personally benefitted from historical records for various reasons and  it happens to be a good practice to forward all the logs of your firewall  to a logging server. The logging server could be...


January 19, 2016  4:46 AM

How to enable logging in Palo Alto Networks Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

When it comes to live troubleshooting or to ensure certain traffic is either blocked or allowed one relies heavily on logs, Palo Alto Network Firewalls does provides very good logging options and fields. Its quite easy to read them and understands them. By default when some one creates any security...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: