General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1710 Views
  • 0 replies
  • 0 Likes

Question about application group and custom service group

Hi All, 

 

First off I appologize if this question has been answered before.

I have a question regarding the use of application groups and custom service groups in the same security policy. Can traffic identified in the application group use a non stand

...

jmathew by L1 Bithead
  • 2138 Views
  • 2 replies
  • 0 Likes

Warning on commit new config - anyone recognise the cause?

Folks.

 

I made a rule change this morning - first one in a while (fairly static environment of late) - and when committing, got the following warning

 

Error: Invalid id 6 for os WindowsUWP.(Module: useridd)

 

Anyone recognise this/know the cause/know wha

...

darren_g by L4 Transporter
  • 1981 Views
  • 1 replies
  • 0 Likes

Cannot enter "Maint" at boot via cli

All,

 

somehow I lost connection to my PA-200. Im trying to do a factory reset on it and I am not able to enter 'maint" during boot via console.  I am using putty .  When I try, it just keeps loading the kernal.  is there a way to pause to enter "maint

...

2016-10-07_14-46-38.jpg
BryanMay by L1 Bithead
  • 3429 Views
  • 2 replies
  • 0 Likes

Resolved! PA-7050 LACP causing delay in fail-over times

We have an HA A/P PA-7050 cluster running 7.0.2 with QNPC (40G). The 40G links are bundled in AE1 with LACP enabled. We noticed during testing that LACP causes 8-10 ping loss during a fail-over event. With LACP disabled we have a 1 ping loss during f

...

lacp.jpg

U-Turn NAT with Port Address Translation in a DMZ

Hi Community,

 

I am configuring my first PA-200 and having a difficult time. I have a /27 external network and have the PA-200 seeing the internet properly. I have internet untrust zone setup as l3 on Int 1.1, and a DMZ setup as l3. The DMZ zone is on

...

DMZ Depiction PA-200.jpg

Resolved! Custom applications and application override

I'm looking to get a better understanding of how custom applications work in relation to application override policies vs security policies.

 

I have created a simple custom application with just a tpc port for an internal application. There appears to

...

Priority in PAN-QoS

Hi, 

 

When you are configuring QoS, it's possible to define more than one profile, and in this profile put 'til 8 Class defined. 

 

When you apply over the egress interface, it's possible to add this Class based over an source Subnet.

 

Here is my questio

...

nanukanu by L2 Linker
  • 4173 Views
  • 5 replies
  • 0 Likes

Resolved! PAN AD Useragent - Excluding users?

Hi.

Is it possible to exclude a specific user from the PAN agent configuration?

I know you can filter based on group - unfortunately, the user concerned, which is used for several automated processes, is also a member of AD groups which I can't exclude

...

dagibbs by L4 Transporter
  • 18373 Views
  • 29 replies
  • 0 Likes

Resolved! Wildfire verdict malicious and action alert

Hi all,

 

We have seen in Wildfire Submissions that all files identified as Malicious and Grayware the action is Alert. The Wildfire Profile is configures to forward to public cloud and Antivirus profile has reset-both in Wilfdire Action tab.

 

Is this a

...

image.png
COMIP by L2 Linker
  • 4841 Views
  • 3 replies
  • 0 Likes

Resolved! PAN-SA-2016-0025 Kernel Vulnerabilities

Summary

The kernel in use by the Management Plane of PAN-OS is vulnerable to CVE-2015-5364 and CVE-2015-5366. (Ref # PAN 52379/87408)

 

Severity: High

The CVSS Score of CVE-2015-5364 is 7.8, High; while the CVSS Score of CVE-2015-5366 is 5.0, Medium. Tho

...

Resolved! PAN-DB to BrightCloud

Greetings All,

 

I know that we tend to recommend PAN-DB over BrightCloud, but in this instance I have a client who prefers to use BrightCloud.

 

Can someone please confirm how to migrate over correctly. This use to be available in the following link, bu

...

  • 24220 Posts
  • 117 Subscriptions
Top Liked Authors
Labels