Month: September 2019

Situation: The client has a problem to access a SFTP server. They would like to check the traffic status from the source. Here is how.

1. Login Paloalto firewall.
2. Navigate to Monitor>Logs>Traffic.
3. Enter (add.src in ip address), for example ( addr.src in 67.162.114.94 ).
4. Click search icon (narrow points to right)

Note: you can also search destination ip or port, for example,

( addr.src in in 67.162.114.94 ) and (port.dst eq 22)

(addr.src in 67.162.114.94) and (addr.dst in 10.0.0.86)

Note: If you don’t remember or don’t do it right, you can click on the IP address under Monitor>Source or Destination.

Use show location command, foe example

show location ip 16.62.78.202

16.62.78.20

United State

Situation: The client has Paloalto firewall block all foreign counties. However, they may want to allow to access foreign countries’ website.

Resolution: Add those foreign countries’ IP addresses to the block list exception. In this example, we will configure a rang IP addresses as a group.

1. Go to Objects>Regions, create a group name, USA-custom in our example and add the IP rang, 141.188.0.0-141.191.255.255 in our example.

2. Go to Policy>Security, select Outbound Blocked countries. add the group name we created in Objects, USA-custom in our example.

3. Run Commit to save the settings.

1. Login Paloalto firewall portal.
2. Navigate to Object>Security Profile>URL Filtering, add allow list.

Situation: The client uses WordPress 5.0.1. In the post editor, he doesn’t have add images option and Add block icon is grayed out.

Troubleshooting: It may be that he disable Visual Editor. To check the settings, go to Users>User Profile. Make sure Disable the visual editor when writing is not checked.

Situation: The client uses WordPress 5.0.1. He doesn’t have Visual Editor. All he has is HTML Editor as shown below..

Troubleshooting: It may be that he disable Visual Editor. To check the settings, go to Users>User Profile. Make sure Disable the visual editor when writing is not checked.

If you want to disable WSUS policy on your workstation, here is how.

1. Run regedit.
2. Navigate to
   HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
3. In the right-pane, set UseWUServer data to 0.
4. Exit the Registry Editor.
5. Restart Windows.

Situation: One of users has a many important clients and the Office 365 spam filter keeps sending his client’s emails to quarantine. The add clients email to spam white-list doesn’t work for him. He would like to add a rule to pass the quarantine and send all possible spam email to his junk folder.

Here is how.

1. Go to Office 365 Exchange admin center.
2. Navigate to protection>spam filter.
3. Click + to add a new policy.
4. In spam and bulk actions, select what to do with spam and which email will be redirected.

5. In applied to, select the recipient.

6. Save the policy and assign Priority (it should be before default policy).