General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 94 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3335 Views
  • 2 replies
  • 14 Likes

Putty cursor is stuck there after PA-VM starts

Hi, Palo-alto PA-VM-KVM-9.1.0.qcow2 is installed into GNS3 version 2.1.21 based on the below link. I try every configuration is same as the link. Two vCPU, 4G RAM and 8 interface. but after it start, it shows below message and then stop at the end of

...

PAFrank by L2 Linker
  • 2963 Views
  • 3 replies
  • 0 Likes

Resolved! IPSEC ikev2-send-p2-delete

Hi all, I have a IKEv2 IPSEC from PA to PA Firewall with tunnel monitoring enabled on one end. The tunnel suddenly went and the peer with no tunnel monitor is sending every 4 seconds a ikev2-send-p2-delete. 

 

What could be the reasons behind this beha

...

Uninstall Global Protect 5.2.5 via Intune Scripts

Good day,

 

I need to uninstall Global Protect from bout 100 user devices.

 

We deploy and remove application using Microsoft Endpoint Manager (Intune).

 

I have created a script using this uninstall command:

This command reported that it ran successfully o

...

Jabulani15_0-1639402078994.png

Vulnerability wrong action Palo

Hi,

 

We are having a weird issue in Palo. We have a FTP server and we can not access because Palo detects this vulnerability: 

Name: SSH User Authentication Brute Force Attempt

Unique Threat ID: 40015

The Palo action is "alert" for this vulnerability but

...

pic1.JPG
pic2.JPG
BigPalo by L4 Transporter
  • 1694 Views
  • 1 replies
  • 0 Likes

Resolved! JSON Miner with basic auth and an API key

I would like to have a miner to connect to the Pingdom API to pull a list of their US node addresses.   The Pingdom API uses basic auth and requires an "app key".

 

Their documentation references two HTTP headers, authentication and app-key:

> GET /c...

Resolved! GlobalProtect portal data collection available in logs?

Starting with PAN-OS 9.0 there is the ability to assign specific agent configurations based on software and app settings on GlobalProtect portal configuration.

It's possible to collect registry data from Windows endpoints under the new tab "Portal Dat

...

portal-data-collection-custom-checks-windows
Tobi by L2 Linker
  • 5248 Views
  • 6 replies
  • 0 Likes

Encryption mode between 6.0 and 9.1

My company are going to migrate upgrade one firewall from 6.0 to 10.1.

And I found below KB points out the supported payload options above and below PANOS 7.0.

Several IKE/IPSec profiles are using aes128 for ESP encryption, is it aes128 equal to aes-12

...

TonyTam by L1 Bithead
  • 1824 Views
  • 3 replies
  • 0 Likes

CTD usage and commit and update errors

VM-300, 10.0.8-h4 on KVM.

At one point issue with commit showed up:

Error: Error reading signature DFA data
failed to handle CONFIG_UPDATE_START

Also updates for Wildfire & Apps/Threats were not being installed. HA sync started to fail.

It was concluded t

...

nikoo by L3 Networker
  • 2427 Views
  • 1 replies
  • 0 Likes

Does Palo Alto support URL rewrite option ?

I have a query is When any user (OUTSIDE/INSIDE) accessing the URL or application like JIRA and CONFLUENCE which is hosted on the AWS server on the internet. that user's traffic hit into the ON- Premises data center instead of the internet and should

...

sagjoshi by L0 Member
  • 2168 Views
  • 1 replies
  • 0 Likes

Resolved! Allow streaming media of news category.

Hi  everyone,

 

One of our customer Has a requirement to block all streaming media but wants to allow streaming from news category,

eg suppose any news channel is redirecting to youtube or any streaming sites it should be allowed but if user is trying t

...

KashifSh by L1 Bithead
  • 2421 Views
  • 2 replies
  • 0 Likes

ESXi deployment question for Palo -VM series (L3 Mode)

I'm having trouble interpreting this link for deployment scenarios of the vm series Palo Firewalls.  Looking for clarification...

https://docs.paloaltonetworks.com/vm-series/10-1/vm-series-deployment/set-up-a-vm-series-firewall-on-an-esxi-server/suppo

...

geewiss by L2 Linker
  • 3630 Views
  • 10 replies
  • 0 Likes
  • 24126 Posts
  • 100 Subscriptions
Top Solution Authors
Labels