How to monitor source traffics in Paloalto firewall

Situation: The client has a problem to access a SFTP server. They would like to check the traffic status from the source. Here is how.

  1. Login Paloalto firewall.
  2. Navigate to Monitor>Logs>Traffic.
  3. Enter (add.src in ip address), for example ( addr.src in 67.162.114.94 ).
  4. Click search icon (narrow points to right)

Note: you can also search destination ip or port, for example,

( addr.src in in 67.162.114.94 ) and (port.dst eq 22)

(addr.src in 67.162.114.94) and (addr.dst in 10.0.0.86)

Note: If you don’t remember or don’t do it right, you can click on the IP address under Monitor>Source or Destination.

How to configure allow policy on Paloalto firewall

Situation: The client has Paloalto firewall block all foreign counties. However, they may want to allow to access foreign countries’ website.

Resolution: Add those foreign countries’ IP addresses to the block list exception. In this example, we will configure a rang IP addresses as a group.

  1. Go to Objects>Regions, create a group name, USA-custom in our example and add the IP rang, 141.188.0.0-141.191.255.255 in our example.

2. Go to Policy>Security, select Outbound Blocked countries. add the group name we created in Objects, USA-custom in our example.

3. Run Commit to save the settings.

WordPress Visual Editor no long working

Situation: The client uses WordPress 5.0.1. He doesn’t have Visual Editor. All he has is HTML Editor as shown below..

Troubleshooting: It may be that he disable Visual Editor. To check the settings, go to Users>User Profile. Make sure Disable the visual editor when writing is not checked.

How to setup a policy pass through quarantine in Office 365?

Situation: One of users has a many important clients and the Office 365 spam filter keeps sending his client’s emails to quarantine. The add clients email to spam white-list doesn’t work for him. He would like to add a rule to pass the quarantine and send all possible spam email to his junk folder.

Here is how.

  1. Go to Office 365 Exchange admin center.
  2. Navigate to protection>spam filter.
  3. Click + to add a new policy.
  4. In spam and bulk actions, select what to do with spam and which email will be redirected.

5. In applied to, select the recipient.

6. Save the policy and assign Priority (it should be before default policy).