General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Best way to prevent brute force attacks (LDAP) on public facing Microsoft RDWeb login page

We are using Server 2012r2 RDS gateway and have the PA configured to with a security policy to allow the untrusted traffic (ssl, rds, http) that is NATed to the internal rds gateway. We are seeing a lot of failed audits in the logs on the terminal server. What is the best way to prevent brute force attacks for logins to Active Directory?

Resolved! SSL decryption & not working VPN

Hi guys, We wittnessed a very strange phenomenon this morning.First we received a call that our VPN gateway was not accepting any VPN connections.At the same time we received calls that certain websites were not accessible. These websites had in common that they were SSL encrypted. We have 2 PA-500 firewalls with a HA configuration.SSL decryptio...

How to ignore routes learned by OSPF

I would like to ignore some of the routes learned by OSFP so they don't install in the forwarding table. Important, I'm not talking about suppress/filter routes that my PA announce through OSPF. For explaining me better, I'm looking for "OSPF Inbound Filtering" in the language of Cisco:http://www.cisco.com/c/en/us/td/docs/ios/12_0s/feature/guide...

COM-UCO by L1 Bithead
  • 10463 Views
  • 7 replies
  • 0 Likes

Problem with nodes minemeld

Hello,I have problem after restarting minemeld it works for about 3 hours and them i can`t load nodes tab. I have loading indicator but nothig happens.Does anyone know what is going on?Best RegardsAdrian

minemeld.png
Shadosan by L0 Member
  • 4016 Views
  • 3 replies
  • 0 Likes

Resolved! Testing HA with unsupported PA-200 devices?

Hello folks, I am considering buying a couple of PA-200 devices from Ebay to some testing and self training.They do not come with support or licensing... Would I be able to configure HA (lite) on these devices?Does HA configuration require both devices to be at the same PAN OS level? Thanks,omatlock

OMatlock by L4 Transporter
  • 2705 Views
  • 3 replies
  • 0 Likes

Resolved! PA DHCP log search

Is there a way to do a specific search for and IP address or mac address in the DHCP logs? I can find and get into the logs but I have to manually look through all the logs to find what I need

jdprovine by L4 Transporter
  • 10817 Views
  • 7 replies
  • 0 Likes

Application vs Services

Hi All, I have probolem with dealing with security policy .. i need to allow telnet to specific ports range (2001 - 2005) but by defining them at services field it is working fine but i cant use ping or any other applications even my application foedl is (ANY) , so wondering what is difference between both of them and what i do if want to enable...

Resolved! Custom Vulnerability Protection

Hi,I've made a custum VP and included into my VP group. In security policy I have applied the standard one (NOT my personal VP) to a security policy but when I go in monitor threat I see that matched also the custom VP. Why??

s_quasar by L3 Networker
  • 2537 Views
  • 2 replies
  • 0 Likes

Resolved! IPSEC question

Hi,I have an existing site with Cisco ASA IPsec tunnel to my HQ Site with Palo Alto firewall. Users at the existing site obtained their IPaddress via DHCP Server configured on the ASA.T he inside interface is G0/0 with 10.10.1.10/24 and outside interface is ISP public IPaddress. PAT translation is configured for internet access. For internal use...

donathon by L1 Bithead
  • 6852 Views
  • 13 replies
  • 0 Likes

Resolved! No indicators for output

It was found that output (high, medium and low) have not incidcators event aggregator has over 2xxxx indicators. Please see attachment. How to resolve it? Many thanks!

Resolved! Inter Vsys Routing

Hi, I have to configure Inter vsys Routing where the traffic has to leave the firewall fromone vsys and enter into another Vsys. I am not able to find any documention on this scenario. I have already configured and tested the communication between vsys that will not leave the firewall but stuck on where traffic should leave the firewall. If...

Resolved! New To Palo Alto Firewalls

Hi,I have Frontier FIOS and am currently using an ASA for my Internet router but want to use a PA-200 with a Cisco 891F behind it. The design looks like this: ISP(DHCP)----(e1/1)-PA-200-(e1/2)---891F (5 subnets) I set e1/1 untrust w/DHCP from the ISP and e1/2 trust w/static /30 to 891F. I also checked auto create default route to inject route ...

Multicast RP on Loopback Address

I was wondering if a loopback interface can be used for RP in a multicast environment . does it matter which IP address is used ? how we can set this up properly?

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels