This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! O365: No Indicators, Miner not working

Hi, we use Minemeld for grabbing the Microsoft Office 365 IP's and URL's. It run's on a VMWare Server, build with the "Full" .ova with Ubuntu & Minemeld. The installation works fine. After importing the config "office365-config.yml" no indicators are shown. I tried to import every single Miner with saving and restarting the engine. Thi...

Resolved! Single IP List

Just getting started with Minemeld - I noticed that even if a single IP feed is provided (e.g compromised IP list), the inboundfeedmc list still shows as an IP range, e.g 1.179.202.22-1.179.202.22It is possible to get jts a list of single IP addresses instead of an IP range?

calamari by L1 Bithead
  • 6008 Views
  • 5 replies
  • 0 Likes

Info: GlobalProtect VPN with iOS 10.2 and T-Mobile LTE network not working

T-Mobile appears to no longer be issuing IPv4 addresses on their LTE network for iPhones running iOS 10.2 and Carrier Profile 27.1. This caused GlobalProtect VPN on our iOS 10.2 phones with T-Mobile LTE to stop working. Summary of the testing - See attached screenshots:Platforms: Two iOS 10.2 iPhones - one on T-Mobile LTE and one on AT&T LT...

AT-T.PNG
t-mobile.PNG

Any way to remove the config/commit lock button in a custom admin role?

Hi all, I'm wanting to set up a "Monitoring and Reporting" only role on Panorama. I've gone throughe and disabled commit/validate as well as all of the tabs except Dashboard, ACC, and Monitor. The thing is I've noticed the commit/config lock button is still present and clickable. Is there any way to remove this on accounts I want to be read-on...

jsalmans by L4 Transporter
  • 2199 Views
  • 2 replies
  • 0 Likes

Resolved! Syslog Miner Prototype Age-out Policy Prevents Engine from Starting

We've been working on getting the syslog miner working to block IPs from the threat logs. However, we want them to stay on the block list for longer than the default 1 hour. From reading through the prototype customization documentation, I think I should be able to configure a prototype somethink like this: source_name: panos.syslog age_out: ...

mboehlke by L1 Bithead
  • 4765 Views
  • 3 replies
  • 0 Likes

Resolved! Debug TAC commmand

Hi I have a pair of lab boxes and looking to test the debug TAC -login and TAC-response commmands. My understanding ia usually TAC provided a password to unlock the data is it possible to get a test password for my company to use? We do not require TAC support but just looking around at different feature and what's there to view.

Resolved! Difference between Aggregate and Classified DoS Protection

Hi Folks,I tried a lot to get my head around Aggregate and Classified DoS Protection. For some reason, i haven't been able to understand the difference. Tried looking into the knowledge base, but nothing helped me. Could someone please explain in short what the difference is.Thanks in advance.Regards,

Resolved! External email attachments

Hi everyone,We allow our users to check personal email externally(gmail/yahoo/etc). I'd like to prevent them from downloading attachments from these external emails if possible. Can this be done and how? Reason being, downloading attachments directly to the desktop bypasses our other lines of defense. We'd like to force them to forward said mess...

Crash28 by L1 Bithead
  • 5012 Views
  • 4 replies
  • 0 Likes

Idea to use Palo Alto for IDS replacement

I have a idea to use the Palo Alto Firewall Vulnerability Protection Profile has a IDS sensor. Here is the idea I have what to run this by anyone. Also need help to know if this will work. Vulnerabilityvulenerability Protection ProfileCreate a RuleRule Name: IDS TestThreat Name: anyAction: AlertHost Type: ?Category: brute-force, DOS, scancreate...

Intermittent SSL

SSL traffic stops after about 45 minutes and is restored in about the same time frame (maybe longer). Firewall is not configured to decrypt. HTTP traffic has no problems. Just deployed (test network) low use firewall (3050) running 7.1.7.

Tom-T by L1 Bithead
  • 5318 Views
  • 9 replies
  • 0 Likes

Drop_update

Hi, I've just created a new node and I'm seeing events such us: DROP_UPDATE on aggregator type. My miner has all domain list but the aggregator has this meessge with "drop_update", do you know it??? Why??? Thanks a lot

SantiBT by L2 Linker
  • 5877 Views
  • 5 replies
  • 0 Likes

Resolved! Proper procedure for updating an extension

I tried this and it seemed to work, just want to be sure it is the right procedure. 1. Disable/delete existing extension wheel 2. Upload/activate updated extension wheel Is there any negative impact on the nodes using the prototypes and classes of the removed extension between steps 1 and 2?

  • 24379 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks