General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 281 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3165 Views
  • 2 replies
  • 14 Likes

Domain syslog match not functioning

Hi!

 

I'm having some trouble matching domain indicators on syslog feeds. So far I have a setup like this:

 

ransomwaretracker_RW_DOMBL (Miner) -> aggregatorDomain (Aggregator) -> feedDomainHCGreenWithValue (Output) -> Domain EDL within PAN-OS

 

The

...

PAN-200 CLI - limited commands

hi

i`m trying to troubleshoot some vpn tunneling connection drops
so i logged to the CLI execute some commands to troubleshoot the VPNs

 

test vpn ike-sa gateway
show vpn ike-sa gateway
test vpn ipsec-sa tunnel

 

none of this command exist even in configure

...

pan200.jpg
Gav-Yam by L0 Member
  • 2109 Views
  • 3 replies
  • 0 Likes

Captive portal + decryption + squid: https problem.

Hi,

I try to configure path for users to access the Internet. I use Palo Alto and squid. But not everything works as I expected.

The path:

user---Palo Alto ---squid ---Internet.

Squid is behind Palo Alto because of citrix users. I want to control citrix

...

okress by L1 Bithead
  • 1934 Views
  • 3 replies
  • 0 Likes

Resolved! Session Info on one Interface

I'm trying to find the session info on our outside interface; however I can't seem to find a command simular to show session info for looking at one interface. 

BPry by Cyber Elite
  • 1502 Views
  • 1 replies
  • 0 Likes

Resolved! Where is PAN-OS 7.0.0?

I have been running PAN firewalls for years and have been the person responsible for upgrading PAN-OS on them since PAN-OS 3.1.9.  Each time, going from one release to a version in a different major release involved downloading the base version of th

...

VPN Tunnel down - Troubleshoot

Hi Admins,

I need some help to troubleshoot our problem with the VPN Tunnels. We installed a Cisco to PaloAlto VPN tunnel. The PA in passive mode. But constantly the tunnels go down.

Here are some log outputs:

less mp-log ikemgr.log

2014-04-23 09:21:54

...

Hithead by L4 Transporter
  • 11214 Views
  • 24 replies
  • 0 Likes

Resolved! Exclude address on Zone Protection

So we use a Barracuda and when it sends out for an update to it's spam filtering it gets identified on the zone protection as a Host Sweep; is their a way that I can exclude it's IP address from getting identified? 

BPry by Cyber Elite
  • 2628 Views
  • 2 replies
  • 0 Likes

Resolved! PAN‐OS 7.1.4‐h2 or PAN‐OS 7.1.4

Hello everybody

 

After the security advisory PAN-SA-2016-0020).... I like to upgrade my actual version 7.1.3  to 7.1.4. But I like to know what are the meaning of -H2 and what is the differences between both versions.

 

Best Regards

 

Gonzalo

SOC_CSG by L4 Transporter
  • 1857 Views
  • 2 replies
  • 0 Likes

applipedia categories

Sorry if this doesn't belong in this location.

 

I see in the applipedia that the applictions have a description.  Does such a description or definition excist for the categories and more specifically the subcategories?  For example, what is the differ

...

mp34549w by L1 Bithead
  • 2910 Views
  • 4 replies
  • 0 Likes

Query regarding Dual ISP through 2 VPNs

Hello,

 

Trying to verify fail over using redundant tunnel at two different sites but it does not work properly.
Methods tried to test:
 
1:disabled the IPSec tunnel on one end, remote end which was monitoring the link failed over and chaned the routing t
...

Farzana by L4 Transporter
  • 1206 Views
  • 1 replies
  • 0 Likes

Any stable release of 7.1 yet?

We recently purchased AutoFocus and I know for the firewalls themselves, it needs 7.1.x for a lot of the integration.  Are there any recommened versions of 7.1 yet?  I know 7.1.4-h2 was recently released.    We mainly have PA-500s with a few 3020s an

...

Resolved! urlfiltering.paloaltonetworks.com - certficate revoked??

Is anyone else having a problem browsing to urlfiltering.paloaltonetworks.com?  We can't get to it from here.  We are being told that the certficate has been revoked.  (SEC_ERROR_REVOKED_CERTIFICATE)

 

I tried two different paths to the Internet from o

...

RSKadish by L2 Linker
  • 4337 Views
  • 5 replies
  • 0 Likes
  • 24091 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels