This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4244 Views
  • 0 replies
  • 0 Likes

What's new in MineMeld 0.9.36

Release Date: 2017-03-21 How to update: Updating MineMeld Nodes JSON Miner now supports Basic Auth via prototype (suggested by @Kimwii) TAXII Miner now supports subscription_id, client cert support has been improved, added support for LinkObjectType constructs and a starting support for AND Observable Composition (thanks @pjames_ucla) WebU...

lmori by L7 Applicator
  • 7025 Views
  • 4 replies
  • 6 Likes

Resolved! DMZ to inside LAN

I know you need a security policy to go from dmz to Lan but do you need a nat statement. On all the Palo Alto documents that I have seen no nat rule is used. If I am wrong could some one send me a link. Thank you

Global Protect: Two preferred NIC listed

Windows 7 laptops with global protect client installed. When I plug my laptop into a wired(ethernet) connection, the wireless IP and the wired IP are showing up as preferred. If I remove global protect from these laptops the wireless IP goes away when I am on wired. We are starting to field help desk calls about slowness to all network resources...

image002.png

Created new certificate for decrypt, now I can't commit because of global protect error

Hello everyone, I created a new certificate for SSL proxy and now for some reason I cannot commit. The error I get is "error applying transform globalprotect-pre-transform.xsl to config tree", AFAIK there was/is a completely different certificate for global protect connections.Does anyone have a clue where I should start to search for the problem?

WelsQQ by L0 Member
  • 2366 Views
  • 2 replies
  • 0 Likes

Resolved! Reset pass user admin via web

Hi, How I do reset the password user admin again??? I have this messages "bad gateway" when I put the credencials on the access web. I can't login Do you kwon something about this, please? Thx

SantiBT by L2 Linker
  • 5169 Views
  • 1 replies
  • 0 Likes

Resolved! Problems users with Windows 10 and User ID agent

Hello, I need your help with the following scene:I have some machines with Windows 10 Operative System and I have detected a problem with the PA Firewall. The Firewall is not detecting the user (UIA), so the policy rules are denying the access.Panos firewall: 7.1.4User Id Agent version: 7.0.4-5I have machines with Windows 7 SO and I don't have a...

SOC_CSG by L4 Transporter
  • 9731 Views
  • 10 replies
  • 1 Likes

QoS theory / functionality

Hi, We have an interface which is 100Mbps. There will never be more than 20 IP addresses connecting on this interface. I wish to guarantee each connection 5Mbps and allow them to use the entire 100Mbps if the additional bandwidth is available. I can create a QoS profile with a class specifing the guaranteed and max bandwidth, and assign it to a ...

SARowe_NZ by L3 Networker
  • 3297 Views
  • 4 replies
  • 0 Likes

Resolved! Package minemeld not found

Refer to the KB below and install it.However, even if you implement 5. Installing MineMeld,The following error will be output. https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454 Since Ubuntu has installed ubuntu server- 14.04.5 LTS - i386.

package-error.png

DNS traffic identified as sophos-live-protection

Some DNS traffic is classified as sophos-live-protection in our traffic logs. Has anyone else seen this? I only have logs 5 days back in time, so I cannot say when this started but it wasn't with the latest apps update. Our firewall is PA-5050 running PAN-OS 6.1.14.

Globalprotect client

I want to do some testing on new global protect clients but I don't want to make it update anyone tell I can test it, How do I get the software to test with out making it the default cleint on the firewall?

jdprovine by L4 Transporter
  • 10126 Views
  • 25 replies
  • 0 Likes

Security policy: exception question

Hi, I'm trying to create a security policy that would block all critical traffic from source zone "A", to destination zone "B". However, I want to allow traffic from a specific IP in zone "A". How can I make an exception to allow that IP? I assume I could create a policy to allow that IP and then one below it block traffic from that zone but I w...

Resolved! message security over http

How does PA handle message security over http ?Whereas https secures the communication, message security secures the content. I would expect PA does not touch http content. But we are having issues with an application that connects to a partners server. Application throws this error, I guess it's a pretty default .net error:An error occurred whi...

dieter_b by L4 Transporter
  • 11271 Views
  • 16 replies
  • 0 Likes

Resolved! Replace ASA5505 with PA200 Teleworker

I have a remote user that's setup with an ASA5505 configured for teleworker. They move around and don't always have a static IP address at their locations. It's configured to call home to my ASA5540s and create the tunnel.My question is if the PA200 has this capability to do the same back to my PA5050?

JeffDBO by L1 Bithead
  • 3632 Views
  • 4 replies
  • 0 Likes

Resolved! AutoFocus Miner Thought

Getting the minemeld engine up running the AutoFocus/TAXII redesign today, one thing I noticed while trying to create better and more targeted AutoFocus miners is that I cant create a list that maintains a specific “age” Where many lists will allow an operator to call out the last 7 days or last 60 days of events, or being no older than that, ...

hallerr by L2 Linker
  • 5739 Views
  • 3 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks