This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4233 Views
  • 0 replies
  • 0 Likes

Resolved! Line Messenger APP

Hi All, Do we have an application for Line Messenger: https://line.me/en/ Cannot see it in Palo database. Thx,Myky

How to block TCP22 connections

Hi everybody I like to know if there is a way to block incoming connections attemps to port TCP 22. I have an end-customer which has lots of connections to his public ip range 0.0.0.0/24 to port TCP22 but not hit the vulnerability 40015 (SSH User Authentication Brute-force Attempt) because it neves triggers the child signature 31914 (SSH2 Login ...

SOC_CSG by L4 Transporter
  • 4191 Views
  • 4 replies
  • 0 Likes

what exactly is tcp-reuse and does it sends session closure traffic to the client and server?

heyhey we have some problem with old system that are beeign stuck after some tome it is working and on the logs we see the session end reason is "tcp-reuse" my questions are:1) what should be happaning on the network flow for this end-reason log to apear2) will the FW generate some traffic to the client and server to "close" their existing conne...

minow by L4 Transporter
  • 25836 Views
  • 1 replies
  • 0 Likes

Resolved! How to submit a CSR to Microsoft CA?

Hello folks! I have seen a few articles and documentation for generating CSR and submitting to Microsoft CA for subordinates. What about just a root stand alone enterprise Microsoft CA? I am preparing to configure a Global Protect portal, generated/exported my CSR, pasted into the Microsoft CA interface, but unclear of what option settings to s...

microsoftCA_1.jpg
OMatlock by L4 Transporter
  • 2434 Views
  • 1 replies
  • 0 Likes

Research paper shows vulnerabilities with SSL interception

On Feb 2017, some universities, Mozilla, Cloudflare, and Google released this paper on corporate and desktop HTTPS interception. First they figured out how to identify when someone connects to a web server through an SSL interception appliance. Then they found that most corporate "man-in-the-middle' appliances expose security vulnuerabilities. B...

Maxstr by L3 Networker
  • 4739 Views
  • 5 replies
  • 0 Likes

CLI debug pcap verbosity levels

I've been using the cli debug pcap captures for a number of issues recently but was frustrated in the last one by a lack of detail. In this case I was capturing OSPF (debug routing pcap ospf on). When I viewed the capture it looks more like a summary of the hello messages without the contents. Is there a generic was to turn up the level of infor...

JWileyR by L1 Bithead
  • 2951 Views
  • 1 replies
  • 0 Likes

Resolved! IPS best practise

Hello all, I configured my security profiles with default seetings .. Is ther any refrence for best practise for IPS and wildfire ??

Miner Data Priorities

Is there a way to have MineMeld prioritize miner data once they get to the output stage? Since some output feeds may be too large for certain firewalls, I want to ensure that our static blacklist is always at the top of the list. Currently new additions that don't overlap space with other miner data seem to show up at the bottom of the list caus...

groehl by L0 Member
  • 3002 Views
  • 1 replies
  • 0 Likes

How to configure Syslog to send a CEF in PAN OS 7.1.3

I had found this article for CEF on PAN OS 6.0.0https://live.paloaltonetworks.com/t5/Configuration-Articles/PAN-OS-6-0-CEF-Configuration-Guide/ta-p/59938 Do the same rules apply for PAN OS 7.1.3? I would need to add "CEF:0|Palo Alto Networks|PAN-OS|7.1.3| before I add the attributes under my syslog server under custom tab? Would that then send t...

User-ID 8.0 - PKI Setup?

Anybody seen any specific directions on how to setup the new PKI enteprise certs in UA 8.0 beyond the fluffy "whats new" feature section. Also what is the different between UAinstall and UAcredinstall ... Release Notes are silent.

PeterT by L2 Linker
  • 3942 Views
  • 3 replies
  • 0 Likes

How to view Panorama related config applied locally on FW

Hi, When you locally export the config of a firewall managed by panorama, only local config statements are visible.would be very interesting to know how you see the whole configuration ( the one related to panorama and the one locally related ) directly from the Firewall CLI. Kind regards PierrickL

Resolved! VPN Site to Site traffic - ALLOWED even if there is defined A SPECIFIC proxy id

Hi All, First of all enviroment's specific:panOS 7.1.7PA 3050 The "strange behavior description": 1. VPN S2S between PA and third party vendor2. Usual configuration3. Proxy id:VTI: Tunnel.103Local: 10.48.0.0/13Remote: 10.64.22.176/28 4. Strange behavior --> Remote network 10.64.22.176/28 is able to reach 10.64.29.0/24 that is NOT defined as o...

Panorama Packet Capture: "File Not Found"

I noticed when trying to open a packet capture in the GUI by clicking the green "down" arrow I get the following error message: "File Not Found". This happens for every capture I try to open with the green arrow in PANORAMA. The packet capture opens fine if I go to the firewall itself and not panorama.

Packet Capture File Not Found.PNG

Resolved! URL Categories - match different categories

HelloHow do the PA decide which categorie it should use, if a web site matches 2 categories.Example: I have checked "www.paloaltonetworks.com" at Brightcloud. The result, it matches "Business and Economy" and "Computer and Internet Security".So I created a special rule set to deny both categories from a specific client. Result: site blocked.Now ...

TRisec by L1 Bithead
  • 8198 Views
  • 3 replies
  • 1 Likes
  • 24357 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks