General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Discussions

Traffic Monitor Filter Basics

  1. PURPOSE

The purpose of this document is to demonstrate several methods of filtering and looking for specific types of traffic on the Palo Alto Firewalls. They are broken down into different areas such as host, zone, port, date/time, categories. At the

...

gmchenry by L1 Bithead
  • 34021 Views
  • 13 replies
  • 8 Likes

Resolved! Report-based Logging Without Interfering With Policies

Hi PANland, I'm back with another implementation question th

 

So PAN devices log when you tell them to, but for their reports feature it seems that with or without logs they will keep unmutable counters of very basic information that has to be parse

...

Resolved! How do I identify which PC made a suspicious DNS query?

Hello

 

I have setup the Anti-Spyware Profile in our firewall and I have a lot of threat logs of type spyware suspicious DNS  queries from a domain controller machine and this is cleansed.

Monitor > Logs > Threat list

As you can see I have configure

...

sinkhole.jpg
SOC_CSG by L4 Transporter
  • 6358 Views
  • 3 replies
  • 0 Likes

Response Page on Internet Zone

Hello Community,

our customer has a Cluster of PA-3020 with PANOS 7.0.2.

We have enabled Application Block Page and the Internal users can view it properly.

Customer has a rule to permit Web-browsing traffic from Internet to DMZ.

 

 

When users try

...

image001.png

Resolved! SSL Decryption - log for SSL certificate errors?

Hi all,

 

We are using PANOS URL Filtering and SSL Decryption, and we reject a variety of SSL certificate problems such as expired certificates, SHA-1 signing, etc.  When one of our users hits one of these web sites, they get a "block" page.  This in

...

RSKadish by L2 Linker
  • 6306 Views
  • 3 replies
  • 0 Likes

Resolved! shell request failed on channel 0

Trying to do an SCP copy to a server, but I can't get past "shell request failed on channel 0". Using Solarwinds, and it says Authenticated user "username" from IP "ipaddress", but it always fails from the firewall. Any ideas?

craymond by L4 Transporter
  • 18056 Views
  • 4 replies
  • 0 Likes
Labels