LiveWeek 23 Jun 2017

by yesterday - last edited yesterday (133 Views)

We take on your questions from Ignite: What is a User-ID? WildFire on analyzing other file types. GlobalProtect over SSL to avoid VPN detection. Syncing downloads across an HA pair. Recommended naming scheme. Panorama as a management and logging device. When to request a Support Event. Tips from the field: Chrome OS Deployment Methodologies for K-12. Finally, we need to know why the chicken crossed the road. Subscribe to us on YouTube, follow us on Twitter, and follow the good example of that road-crossing chicken!

Read more...

Ignite '17 edition, Reaper's favorites Part 2

by Thursday - last edited Thursday (173 Views)

Part 2 of the questions from the #GetAnswers wall at Ignite: Wildcard search in Traffic Monitor. Pre or post policy with Panorama? Base version when upgrading the firewall, and syncing downloads across an HA pair. App-ID or service/standard ports with traffic? Best method to intro span VLANs. 

Read more...

Ignite '17 edition, Jdelio's favorites Part 1

by Wednesday - last edited Thursday (233 Views)

Read some of Joe's favorite questions from Ignite and get a peek into the Ignite booth (video). More on TAP interface. GlobalProtect over SSL to avoid VPN detection. Panorama as a management and logging device, and the chicken crosses the road again!

Read more...

Ignite '17 edition, Kiwi's favorites Part 1

by Tuesday - last edited Wednesday (390 Views)

Questions, directly from Ignite. A few of my personal favorites: What's the recommended naming scheme? Can I change severity of logs? When will WildFire be able to analyse other file types?

Read more...

Ignite '17 edition, Reaper's favorites Part 1

by Monday - last edited Thursday (414 Views)

Questions from the #GetAnswers wall at Ignite. A few favorites: What is a User-ID? Why can't we do an object with IP range? How does NAT work with VWire? Best practice for User-ID for Mac OS-X. Can WF-500 private cloud scan the same file types as the public cloud? 

Read more...

LiveWeek 16 Jun 2017

by a week ago - last edited Sunday (788 Views)

Ignite in review, with appreciation for a larger-than-life #GetAnswers community of members like you. Check the Live Community Ignite blog, Twitter, and our YouTube channel for all the latest on Ignite. See announcements for new and exciting technology from Palo Alto Networks. Join the Live Community and lend your voice, your knowledge, and your skill to something that's larger than the sum of its parts.

Read more...

LiveWeek 9 Jun 2017

by 2 weeks ago - last edited 2 weeks ago (1,069 Views)

Progress with EMR or Electronic Medical Records through Epic App-ID. What's a TAP interface and what can it do? Learn to configure source NAT on the PAN-OS GUI. LiveWire Special Ignite Edition is here! Tech Docs delivers a treasure trove. Can you escape the LabyREnth of Unit 42? Do try - save the cyberworld and win a whole lot of $$$$$ to boot. Watch us on YouTube, follow us on Twitter, and meet us at Ignite.

Read more...

Can you escape the LabyREnth from Unit 42?

by 2 weeks ago - last edited 2 weeks ago (985 Views)

The goblins are at the gate, and in this final hour it’s time for your many hours studying the blade, mastering the blockchain, and cultivating inner strength to be put to use. You’ll have until 4:00 p.m. pacific time on July 23, 2017 to test your mettle against the seemingly endless hordes of more than 25 security challenges. Will you answer the call?

Read more...

Electronic Medical Records are about to get more secure

by 2 weeks ago - last edited 2 weeks ago (741 Views)

If you're working in healthcare, Electronic Medical Records, or EMR, then the Epic application may be familiar to you. We're about to make your life easier!

Read more...

What's a TAP interface and what can it do?

by 2 weeks ago - last edited 2 weeks ago (1,058 Views)

Some interface modes are very straightforward while others can be a little more complex. The TAP interface can bring a wealth of information without interference.

Read more...

LiveWeek 2 Jun 2017

by 3 weeks ago - last edited 2 weeks ago (1,206 Views)

To disable or not to disable, that is the question. (We have the answer, too!) Watch our video to set up an IPSec VPN tunnel. Reverse engineer the LabyREnth from Unit 42 -- capture the flag and win more than swag! Follow us on Twitter, check out our massive video library on YouTube, and come to Ignite.

Read more...

LabyREnth calls the genius in you

by 3 weeks ago - last edited 2 weeks ago (1,322 Views)

Calling all hackers, code monkeys, and general geniuses at large! Start unraveling, decoding, analysing and reverse engineering Unit 42's second annual Capture the Flag contest, with LabyREnth lying in wait till the June 9 official start date. Win a ton of $$$$$ and brandish your brain to boot!

Read more...

GlobalProtect IPv6 Troubleshooting Part 2 LSVPN

by 3 weeks ago - last edited 2 weeks ago (873 Views)

Joe's Troubleshooting articles on GlobalProtect and IPv6 continue with Part 2 that covers LSVPN and GlobalProtect IPv6.

Read more...

DotW: To disable or not to disable, that is the question.

by 3 weeks ago - last edited 3 weeks ago (1,164 Views)

You may have noticed the option to disable new applications in the scheduled content updates, but why would you want to enable this option?

Read more...

LiveWeek 26 May 2017

by a month ago - last edited 2 weeks ago (1,486 Views)

URL filtering with PAN-OS 8.0. Setting up an IPSec tunnel (we show you how). Let's refresh what we know about zone protection and QoS, adding a quality discourse on historical stats. Win a bundle of $$$$$ with Unit 42's LabyREnth Capture the Flag challenge! RESPECT for your journey at 'What I wish I had known starting with Palo Alto Networks.' See you at Ignite, where you've got questions and we've got answers. 

Read more...

Hats off to you! What I wish I had known starting with Palo Alto Networks

by on ‎05-23-2017 01:49 PM - last edited a month ago (1,712 Views)

Thanks to everyone who participated in ‘Starting with Palo Alto Networks — What I wish I had known.’ Discussion responses range from the firewall to Panorama and back again. We appreciate all you shared and all we learned, which speaks highly of your positive engagement and support for the community and each other. We thank you. Check out a few highlights from the discussion and a response to a common question about how the Live Community differs from Fuel User Group.

Read more...

Setting up an IPSec VPN Tunnel

by ‎05-23-2017 02:54 AM - edited ‎05-23-2017 05:22 AM (2,260 Views)

A VPN allows you to create a secured network connection over a traditional network by encrypting all communication between two hosts.  Let's take a look at how to set up a site-to-site tunnel that uses strong IPSec encryption!

Read more...

DotW: URL filtering with PAN-OS 8.0

by ‎05-22-2017 03:51 PM - edited ‎05-23-2017 03:30 AM (1,618 Views)

If you are new to PAN-OS 8.0 and have started using URL filtering, consider this a mini FAQ to clarify new features or default settings for PAN-OS 8.0 URL filtering.

Read more...

LiveWeek 19 May 2017

by on ‎05-18-2017 03:29 PM - last edited a month ago (1,377 Views)

WanaCrypt0r ransomware and ways that Palo Alto Networks can help you defend your network. Are you using custom applications that require greater overhead? Do you need to improve performance for IPSec traffic? TCP MSS adjustment might be just what you need. Clear commit queues and stop a running commit on PAN-OS 7.1 and later. Check this: Step 1. Scripting. Step 2. Retrieving reports using the XML API. Step 3. Learn how. The Live Community has a brand new look, just for you. Slide on through and tell us what you think.

Read more...

Pulling reports using the XML API

by ‎05-17-2017 03:20 AM - edited ‎05-17-2017 09:57 AM (3,263 Views)

Scripting makes the admin's task a lot easier, reports tell the admin what's up and how things are going. The logical next step is to retrieve reports using XML API.

Read more...

Palo Alto Networks protects against WanaCrypt0r and other ransomware attacks

by ‎05-16-2017 09:37 AM - edited ‎05-16-2017 02:00 PM (2,666 Views)

Want to know more about the latest WanaCrypt0r ransomware and ways that Palo Alto Networks can help you defend your network from these attacks? Please click to read more.

170x170_wana-292-176.png

Read more...

TCP MSS adjustments

by ‎05-16-2017 05:11 AM - edited ‎05-17-2017 09:25 AM (1,151 Views)

Are you using custom applications that require greater overhead or do you need to improve performance for IPSec traffic? TCP MSS adjustment might be just what you need!

Read more...

LiveWeek 12 May 2017

by ‎05-15-2017 07:50 AM - edited ‎05-17-2017 05:29 PM (1,190 Views)

A high load on the management CPU -- how to deal. T is for troubleshooting GlobalProtect IPv6. OTP 2FA OMG, but we speak Geek and GlobalProtect. Accessing the User-ID agent or AD on a different interface. The experts speak at Ignite. Be there, sporting your Live Community t-shirt (see how to get one). Tech Docs tells all about Aperture, including SAML support, Traps, PAN-OS, and VM-Series on Azure Government Cloud. All here in your Live Community.

Read more...

Accessing the User-ID agent or AD on a different interface?

by ‎05-12-2017 07:10 AM - edited ‎05-15-2017 09:11 AM (1,044 Views)

You want to fetch user information for the clientless User-ID or the installed User-ID agent, but your management interface is Out Of Band, now what?

Read more...

OTP 2FA OMG

by ‎05-12-2017 06:06 AM - edited ‎05-15-2017 06:29 AM (1,106 Views)

One Time Password (OTP) based Two-Factor Authentication (2FA) really sounds like a mouthful (of acronym OMG RTFM), but in today's security landscape, steps need to be taken to make remote connections more secure.

Read more...

Tips & Tricks: GlobalProtect IPv6 Troubleshooting (T is for...)

by ‎05-09-2017 02:59 PM - edited ‎05-11-2017 09:54 AM (1,124 Views)

This week's Tips & Tricks is all about GlobalProtect IPv6 Troubleshooting.

Read more...

LiveWeek 05 May 2017

by ‎05-08-2017 01:35 PM - edited ‎05-17-2017 09:19 AM (1,218 Views)

Whassup with applications and services in the security policy? Is there a difference and should you be worried about how each is implemented? All about the new Panorama 8.0 and the logs and log collector upgrades required after upgrading -- let's clear up any confusion. Joe's tasty alphabet soup cooks up D for Duo (with MFA thrown in) and A for Azure to PAN VPN. Our support engineer creates a workflow and troubleshooting checklist for policy enforcements. Remember June 16 for Panorama certificate expiration. Be sure you're all signed up for the next LiveWire newsletter, follow and retweet at Twitter, and catch the latest on our YouTube channel.

Read more...

High Loads on Management CPU

by ‎05-08-2017 05:04 AM - edited ‎05-15-2017 08:57 AM (2,995 Views)

Seeing a high load on management CPU is not entirely uncommon. Certain processes can cause a spike in CPU.  Still feeling uncomfortable with these spikes? Then there are a few tips and tricks to help reduce the load.

Read more...

What's a service anyway?

by ‎05-04-2017 12:51 PM - edited ‎05-11-2017 08:42 AM (3,253 Views)

What's the deal with applications and services in the security policy? Is there a difference and should you be worried about how both are implemented?

Read more...

Tutorial: Clearing Commits

by ‎05-04-2017 05:46 AM - edited ‎05-17-2017 10:17 AM (927 Views)

This tutorial explains how you can clear commit queues on PAN-OS 7.1  and later versions.  It also discusses how you can stop a running commit!

Read more...

Learn more
Ask Questions Get Answers Join the Live Community