This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4119 Views
  • 0 replies
  • 0 Likes

Resolved! IPS best practise

Hello all, I configured my security profiles with default seetings .. Is ther any refrence for best practise for IPS and wildfire ??

Miner Data Priorities

Is there a way to have MineMeld prioritize miner data once they get to the output stage? Since some output feeds may be too large for certain firewalls, I want to ensure that our static blacklist is always at the top of the list. Currently new additions that don't overlap space with other miner data seem to show up at the bottom of the list caus...

groehl by L0 Member
  • 2971 Views
  • 1 replies
  • 0 Likes

How to configure Syslog to send a CEF in PAN OS 7.1.3

I had found this article for CEF on PAN OS 6.0.0https://live.paloaltonetworks.com/t5/Configuration-Articles/PAN-OS-6-0-CEF-Configuration-Guide/ta-p/59938 Do the same rules apply for PAN OS 7.1.3? I would need to add "CEF:0|Palo Alto Networks|PAN-OS|7.1.3| before I add the attributes under my syslog server under custom tab? Would that then send t...

User-ID 8.0 - PKI Setup?

Anybody seen any specific directions on how to setup the new PKI enteprise certs in UA 8.0 beyond the fluffy "whats new" feature section. Also what is the different between UAinstall and UAcredinstall ... Release Notes are silent.

PeterT by L2 Linker
  • 3914 Views
  • 3 replies
  • 0 Likes

How to view Panorama related config applied locally on FW

Hi, When you locally export the config of a firewall managed by panorama, only local config statements are visible.would be very interesting to know how you see the whole configuration ( the one related to panorama and the one locally related ) directly from the Firewall CLI. Kind regards PierrickL

Resolved! VPN Site to Site traffic - ALLOWED even if there is defined A SPECIFIC proxy id

Hi All, First of all enviroment's specific:panOS 7.1.7PA 3050 The "strange behavior description": 1. VPN S2S between PA and third party vendor2. Usual configuration3. Proxy id:VTI: Tunnel.103Local: 10.48.0.0/13Remote: 10.64.22.176/28 4. Strange behavior --> Remote network 10.64.22.176/28 is able to reach 10.64.29.0/24 that is NOT defined as o...

Panorama Packet Capture: "File Not Found"

I noticed when trying to open a packet capture in the GUI by clicking the green "down" arrow I get the following error message: "File Not Found". This happens for every capture I try to open with the green arrow in PANORAMA. The packet capture opens fine if I go to the firewall itself and not panorama.

Packet Capture File Not Found.PNG

Resolved! URL Categories - match different categories

HelloHow do the PA decide which categorie it should use, if a web site matches 2 categories.Example: I have checked "www.paloaltonetworks.com" at Brightcloud. The result, it matches "Business and Economy" and "Computer and Internet Security".So I created a special rule set to deny both categories from a specific client. Result: site blocked.Now ...

TRisec by L1 Bithead
  • 8109 Views
  • 3 replies
  • 1 Likes

Resolved! Create new output

Hi, I am new to Minemeld, we are running with the classic O365 Minemeld config on MM version: 0.9.34. I have a requirement to extract the data for Skype only. Is it possible to create an output from just the 'office365_skypeBusinessOnline' node, if so how is this done, thanks ?

paul_w by L2 Linker
  • 4140 Views
  • 2 replies
  • 0 Likes

URL Filtering - Allow access to sites or categories by AD Group

I am a complete newby here. We are migrating from Websense to PA URL Filtering. I would like to duplicate policies so I can allow certain people access to specific web sites or categories, but continue to block everyone else. This should be seamless, not requiring the user to enter a password each time they want to go to the site. I would hope i...

FreAlan by L0 Member
  • 2841 Views
  • 2 replies
  • 0 Likes

Monitor threat - URL/FileName

Hi,in monitor threat I can't view URL/FileName in details.I want to view the SQL injection with the full URL (comprehensive of the query string).Is there a way to see it?

s_quasar by L3 Networker
  • 2968 Views
  • 4 replies
  • 0 Likes

Minemeld stuck after reboot

I deployed serveral times Minemeld and everything is running fine. But when I reboot Minemeld I got stuck in the boot procedure. First it hangs for 120 seconds: Cloud-init-nonet[14.62]: waiting 120 seconds for network devices. after 120 seconds: Stopping Handle aaplying cloud-config Waiting for network configuration... waiting up to 60 more se...

minemeld-01.png
minemeld-02.png
minemeld-03.png
minemeld-04.png

Global connect client connected but no IP address assigned

I have this odd situation, global connect client successfully establish the connection with portal but in network area there is no IP address on virtual PAN network card. This is only happening with new users. Old users seems to have no problems.I Have GP version 3.0.0-74 and PA-500.Is anyone else having same isue? Every suggestion would be appr...

External Block List for matching objects in security and decryption policies

Hi, We have few use cases around dynamically block list (dynamic update for us) however we would like to use it to identify and "allow" apps rather than "block". Considering it is just a group with objects which are dynamically populated based on url, i think it will work. We would like to provide ssh-proxy exception based on the dbl. Strangly e...

  • 24336 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks