General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Discussions

Basic multiple-WAN-IP networking question

Some background, I am coming from a Sonicwall (which I'm not a big fan of, but I'm familiar with it) and I also have experience with the open-source pfSense system.  I'm not super-knowledgeable regarding subnetting, but I have a basic understanding a

...

bradenmcg by L3 Networker
  • 4425 Views
  • 3 replies
  • 0 Likes

SSL VPN Configuration - HELP!

Hi All,

I have been strugeling to get set up the SSL VPN on v3.1.3

I have managed to get the page to login appear

I have managed to be able to login

I have been able to dowload and get the client connect

but for some odd reason it will not communicate to

...

Security Policy for Anti-virus blocks or allows all

Hello,

I've watched the video on how to setup a URL filter security policy. It shows the action selected to be allow. When I created an Anti-virus Profile I set it up to block anything on http.

I then went and created the Security policy selecting that

...

numberall by Not applicable
  • 3449 Views
  • 4 replies
  • 0 Likes

Resolved! Blocking fonts.

I'd like to block users from downloading any OpenType (.otf) and TrueType (.ttf) fonts. Is there any way to block them?

I am running PAN OS 3.1.3 and content version 194-663.

mharding by L4 Transporter
  • 3177 Views
  • 2 replies
  • 0 Likes

Resolved! Brute force and scanning signatures

Box: PA-2020 (probably all)
OS Version: PANOS-3.0.6
Hi!
I have some questions and suggestions for the threat-ips part of the box.
1. Ability to view settings for scanning and brute force signatures.
- What are the settings for these signatures? I can
...

u2521 by Not applicable
  • 873423 Views
  • 13 replies
  • 1 Likes

Packet Capture Question

Hey folks,

I'd like capture a particular traffic stream for analysis.  I see how you can capure a packet trace as part of a Vulnerability Protection profile, but this particular traffic is not seen as a vulnerability or threat (i.e. it's not showing u

...

Vlan information in logs

Device: PA-2050

OS: PANOS-3.0.6

Hi

I have a question about Vlan. In the different logs you cant find "source vlan" anywhere. I belive this is cause Palo Alto is a zone based firewall and you should use zones to separate different network types rather th

...

u2521 by Not applicable
  • 5228 Views
  • 6 replies
  • 0 Likes

Resolved! Scheduling policies and continuous tcp sessions

Dear Gentlemen,

Does anybody know how we can configure the policies to block a continuous TCP session when the schedule runs out?

The test we are trying to do is to block a skype discussion during a scheduled time.

During the 'allowed' time, we can laun

...

itbrain by L0 Member
  • 3762 Views
  • 3 replies
  • 0 Likes

Remote Desktop and IPSec in the DMZ.

This is something we had enabled when we were using a Symantec SGS firewall, but had to disable it when we went to the PA-2050. I haven't had much time to play with it, but I need to get it working again. Under the local Group Policy of each server,

...

mharding by L4 Transporter
  • 2591 Views
  • 1 replies
  • 0 Likes

Uncommented CLI for resetting to default

We are doing quite a lot of evaluations during this time and we have found an interesting undocumented CLI command to reset the PA device to the factory default without following the complete process of the console boot. Use this command:

admin@PA-205

...

asecus by Not applicable
  • 3044 Views
  • 1 replies
  • 0 Likes

Secondary interface addresses

I'm trying to add more of the public IP addresses issued by my ISP to the external port on my PA-500.  When I try to commit the config, I get this error:

  • routed: In virtual-router Incoming: address 12.x.x.x/27 on interface ethernet1/1 has overlapping
...

bwmillslg by Not applicable
  • 11610 Views
  • 4 replies
  • 0 Likes
Labels