General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

Resolved! Hardening the security rule for service ports

Hello Experts In my firewall configuration, many security rules have specific application but service ANY. I would like to harden service part as well. Once I veiw the logs for particular security rule to check service ports, there are many pages, I have to manually go. Is there any way I can generate the report for that particular security rule...

Resolved! Configuration Management

Hi,I have a further question:I don't understand the configuration management yet.The option "Revert to last saved configuration", what does that mean?When is a configuration saved? Every time I commit ? Or only manually? Maybe I have done changes on the device and commit them. Then I check that something doesn't work anymore.What can I do?

Route check on PA firewall - Longest match not there??

Hello Experts I want to check which route is matching for some host IP like 10.155.7.33, so I can check the outgoing interface and destination zone for policy lookup. When I run the command “show routing route destination 10.155.7.33/32”, it is showing nothing. Although I have matching route 10.115.7.0/24 in the routing table. Kindly help !

SSH Login attempts with Root account from external IPs

Hello, How can we block SSH login attempts (With root account )which are made from external IPs in Paloalto. Note: We also have customers who login from external Ips. We dont have customer Ip list to white list. Thanks and Regards.

Resolved! Captive Portal - Source Untrust

Hi everyone, I have a Web Server and i want login users with a Captive Portal,can I use the CP with Source Untrust to DMZ (where is my Web Server)?its recommended?Thanks a lotMatt.

MineMeld - CSV input feature

Hi all, Firstly, great work on MineMeld - it is fantastic!!! I have it working great for dynamic IP lists and AF export lists, but our customer would like to import Indicators from CSV. It doesn't look possible with current class/prototypes. Any suggestions? I could script the import to a hosted list, but kind of defeats the objective. Addit...

How can I see the default value of a configuration setting?

Hi, is there a way to see the default of a certain setting... as a one would do with "sh run all" on C*SCO? Thank you! Best regards,Armin

User ID agent

Hello, I am integrating User ID agent on a multi domain invironment. I have around 14000 users total. What are the System requirements to spin a VM machine where I will install the User ID agent.to be specific, my client is asking what is the amount of HD that we need to recerve for those user ID logs. Please let me know any ideas. Thank you in...

Resolved! Install problem

Hello - We are new to MineMeld, we are following the install process given here: https://live.paloaltonetworks.com/t5/MineMeld-Articles/Running-MineMeld-on-VMWare-desktop/ta-p/72038 At step 6 the initalization process fails with the message 'ERROR INSTALLING MINEMELD, PLEASE CHECK /var/log/minemeld-auto-update.log FOR DETAILS' however we don...

Resolved! DNS in global protect vpn

Hello Experts In global protect configuration, I provided the DNS IP. After VPN connect, I have two DNS, Physical card DNS and global protect vpn provided DNS. My question is that what DNS would be used for DNS queries for internet and for traffic through global protect vpn? Regards, GR

Resolved! Filtering the security rules by rule number

Hello Experts Is there any option to filter or find the security policy through rule number? It seems there is no filter for rule number. Appreciated your support

Resolved! Best Security Firewall review

Ok, I heard that palo alto does have a service that will review a firewall configs to make sure the Best Practices and Security Practices are being down. If this is true what is the service call and has anyone use this service ?

Resolved! IP for portal and gateway in global protect

Hello Experts Can I use different IP for portal and gateway other than IP assigned to external interface of firewall? Should I need to assign this IP also to external interface of firewall or no need? Regrds, GR

Panorama Audit Logs

Hello Experts I am using Panorama to push configs to firewalls. But the problem is that there are alot of users, doing configuration but in audit logs of Panorama, it is showing config by <user> thats it. I would like to see what actual changes/commands user has pushed. How I can do that?

Wildfire .docx

Hi, i am testing wildfire at the moment for forwarding .doc, .docx and EXE Files to the wildfire cloud. This is my rule: But it seems, that only .doc and .exe Files are forwared to the cloud (first Forward but then upload skip because the cloud have already seen this file - that´s ok) The .docx files are just in "alert" state and will...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!