Network technologies and trends:

Palo Alto Networks


February 27, 2018  4:57 AM

Panorama has open software issues, auto logout after 10 minutes

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Palo Alto Networks

When it comes to an idle timeout, by default Palo Alto Networks Firewalls and Panorama are configured for 3600 seconds (1 hour). This means if a Security Engineer or Security Analyst logs into the Web UI of Palo Alto Networks Firewalls and Panorama keeps the session idle for an hour they are not...

February 21, 2018  5:42 AM

Palo Alto Networks releases PAN-OS 8.1 and new hardware firewalls

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Data centers, Decryption, Networks, Palo Alto Networks, risks, Security, SSL, threats

The recent press release from Palo Alto networks comes with a great surprise as they released PAN-OS 8.1 which comes with some great new features and enhancements, also the new hardware they introduced have plenty to offer. With growing threats targeted in form, SSL is always challenging to...


March 31, 2017  6:43 PM

Palo Alto Networks Next-Generation Firewall wins SANS Best of 2016 Award

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Automation, Cyberattacks, Palo Alto Networks, platform, SANS, survey, Vendors

SANS institute conducts a survey every year among its community for nominations of the SANS "Best of the Year" awards for  products and services that have successfully provided increases in both the effectiveness and...


March 30, 2017  5:19 AM

Cisco ASA VPN troubleshooting  – Decaps but No encaps

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
ASA, bug, Cisco ASA, Cisco VPN, firewall, NAT, Palo Alto Networks, Policies, Proxy, Troubleshooting, tunnel, VPN

Recently we observed a strange issue while building a site to site VPN tunnel between a Cisco ASA [9.1( 5) ] and Palo Alto Next Generation firewall.(PAN-OS 7.0.9) It was observed always phase 1 part of tunnel established successfully with peer however phase 2 failed to come up. Always we were...


February 8, 2017  7:19 AM

Palo Alto Networks launches PAN-OS 8.0

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
AWS, Azure, cloud, Cyberattacks, Data Center, Firewalls, GATEWAY, Internet, KVM, NSX, OpenStack, Palo Alto Networks, Phishing, Private Cloud, Public Cloud, SaaS, Sandbox, VM, VMware, Wildfire

On February 7, 2017 Palo Alto Network launched PAN-OS 8.0 with more than 70 new enhancements and capabilities which can prevent successful cyberattacks.


February 7, 2017  9:13 AM

Apple iOS 10.2.1 and Palo Alto Global Protect issues

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
"Apple Store", Apple, GATEWAY, IOS, Palo Alto Networks

The recent Apple iOS 10.2.1 update has created an issue with Palo Alto global protect agent for iOS devices. Its been observed that the Palo Alto Global Protect client hangs and never opens. The only way one could open a Global Protect client is uninstall and reinstall it. Once the client is...


February 26, 2016  4:28 PM

Palo Alto Firewall with PAN-OS 7.02 have issues with OSPF

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
firewall, OSPF, Palo Alto Networks, router

When it comes to Palo Alto Networks Firewall, we all know PAN-OS 6.x is a quite stable version, Palo Alto announced PAN-OS version 7 almost 8 months back,  but I see very few people are using this version of PAN-OS. Those who are considering  a migration from PAN-OS 6.x to PAN-OS 7.x  they...


February 13, 2016  8:40 AM

How does Palo Alto Networks Firewall examines an UDP Packet to identify an application?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
application, Application firewalls, DNS, firewall, Next Generation Networking, Packets, Palo Alto Networks, UDP

In the below example, a single DNS query packet is trying to query  the domain www.yasirirfan.com. This packet contains all the information needed by a Palo Alto Network Firewalls to identify an app,  by inspecting the below UDP packet it can determine


January 31, 2016  5:26 AM

What are Address Objects in Palo Alto Networks Next Generation Firewall?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, FQDN, HA, Interface, IP range, IPv4, IPv6, Layer 2, LAYER3, Loopback, objects, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

Like all other firewalls , Palo Alto Networks Firewall supports Address objects. These Address Objects are basically named objects which can be configured on a Palo Alto Networks Firewall . The address object can include an IPv4 or IPv6 address or the FQDN. The address can be configured based on...


January 20, 2016  5:29 AM

How to configure log forwarding in Palo Alto Networks Firewall? – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan
Administrator, application, Default route, Ethernet, Firewalls, HA, Interface, Layer 2, LAYER3, logging, Loopback, Palo Alto Networks, Security policy, Services, Static route, tunnel, URL, Users, VLAN

In this post we will continue the configuration of log forwarding in Palo Alto Networks Firewall, in previous post we saw how to add a Syslog Server...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: