General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

PA is sluggish

I have removed a lot of rules and am down to 400 rules, I am up to OS 7.0.10 and upgrade the OS every other month

In the las couple months the PA seems to be getting slow and not as quit to commit changes or to pull up the dashboard when I first login

...

jdprovine by L4 Transporter
  • 2996 Views
  • 10 replies
  • 0 Likes

Resolved! Traps Pricing

Does anyone have a rough idea of how much traps runs per endpoint. We run roughly 800 laptops and desktops that this would be deployed to but I'd like to get a rough idea of pricing to determine if this is something that management would actually try

...

BPry by Cyber Elite
  • 3086 Views
  • 6 replies
  • 0 Likes

BFD in Active Active HA

Figured this out the hard way.  If you create a custom BFD profile in Active / Active HA mode, the BFD profile names need to be unique to each device.  If you try to configure a BFD profile with the same name on both devices, BFD will not come up.  

 

...

Resolved! "decrypt-unsupport-param" error on Inbound SSL Decryption

I am trying to get inbound SSL decryption for our web server. I imported our web server's SSL certificate with private key to the Palo. It shows "Valid" and the "private key" checkbox is checked.

 

But the log shows it is not getting decrypted, and I'm

...

Maxstr by L3 Networker
  • 24790 Views
  • 18 replies
  • 0 Likes

Minemeld not pulling low and medium confidence feeds?

Hello,

 

My firewall is able to pull several feeds from our minemeld server. However, it is not pulling our Low and Medium Confidence inbound feeds. Worked with PA support and they said there must be something wrong with our Minemeld server and sugge

...

refresh FQDN problem

Hi,

 

We have several computers in our network using this proxy: proxy1.eu.webscanningservice.com

This domain changes IP each 15-20minutes. So when this domain changes the Ip we can reach the proxy from our computers.

So i have several doubts:

1)PA detect

...

Palo Alto Integration... weirdness.

 

Morning,

 

I was wondering if someone could help me. We have the palo intergation enabled and the results are rather interesting.

 

If I check a device that is a iOS Device in Aruba I can see IP, user assiocated to the device and so on. If I put that sa

...

Screen Shot 2017-01-10 at 10.39.45 am.png
Screen Shot 2017-01-10 at 10.40.29 am.png
Screen Shot 2017-01-10 at 10.40.46 am.png

Ping to allow on Security Policy

Hi

 

I have made security policy on Paloalto as per port base requirment.

 

eg.

I have allowed http,  https, dns as a service. But i also want ping to be allowed in the same policy.

 

Please advice how can achive this.

 

Samir.  

samirs by L0 Member
  • 2219 Views
  • 2 replies
  • 0 Likes

Recommemded version for PA-2020

hi,

 

We have a cluster PA-2020 with PanOS 5.0.16. I just looed into EoS version, and this version doest have support since last november. Please, can we upgrade this PA to any higher version??? which is the recommend for this PA-2020?? we dont want to

...

Resolved! Panorama and Oracle OVS

Hello,

 

We have Panorama implemented on VMWare ESX. We would like to move the VM from VMWare to Oracle Virtual Host. Is Panorama supported on Oracle OVS?

 

Thanks in advance.

Farzana by L4 Transporter
  • 1967 Views
  • 1 replies
  • 0 Likes

Resolved! REST API: set: service

Hi,
 
I tried to set a new service using action=set and it gives me an error 
"set failed, may need to override template object first”
And if I use action=override
"Object cannot be overridden”
r
Can anyone help me to get this done?
 
https://[IP-ADDRESS]/api
...

hottija by L1 Bithead
  • 7662 Views
  • 5 replies
  • 0 Likes

Minemeld on RHEL due any time soon?

Hi all, as a long time Palo customer I'm keen to utilise Minemeld and ideally like to run it on RHEL.  

 

Is there anything in the pipeline for installing / supporting Minemeld on RHEL or anyone admitting to getting it working without "support"?

 

Ot

...

Stevobot by L1 Bithead
  • 5897 Views
  • 3 replies
  • 1 Likes

ldap cfg LDAP failed to get info from server

Has anyone run into the issue where the ldap server is generating the following logs: ldap cfg LDAP failed to get info from server "10.x.x.x"?

We are not getting authentication issues and the tcpdump on the mgmt interface shows bi-directional traffic.

...

  • 24014 Posts
  • 102 Subscriptions
Labels