General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 331 Views
  • 0 replies
  • 2 Likes

Panorama 7.0.6

Hi,

 

We have several Palo Alto FWs in diferent PanOS. W want to update our panorama to version 7.0.6 but we dont know if this panorama in 7.0.6 could manage FWs in PanOS 5.0???

 

Regards,

Jesus C.

Resolved! Panorama userid obfuscation

For a new panorama deployment, a customer is asking if access to panorama logging can be configured in such a way that the USERID is invisible or obfuscated with a number. View this is in light of user privacy protection in an international context a

...

deecee by L0 Member
  • 2096 Views
  • 1 replies
  • 0 Likes

Blocking LinkedIn-Publish A Post

Has anyone been successful in blocking the Publish A Post option on LinkedIn. I don't kknow how to do custom application blocking if it is needed and tech support just said they would submit a feature request.

 

Thank You

ANorton by L0 Member
  • 3189 Views
  • 3 replies
  • 0 Likes

Resolved! reset-client vs. reset-server

How do you decide on the action for a particular threat? For drop, tcp will still retry. With recent what is the general practice, reset-both, reset-client or reset-server?

Active Directory Testing

Hello Community,

 

My first posting here.

 

I have successfully configured LDAP / Active Directory on my VM ESXi. 

 

My Palo Alto can connect to the AD, see image

However, I don't know how to test to see users in the monitoring logs. I will need a VM

...

LDAP.png

Group Mapping

I have created my LDAP server profile and my group mapping under user identification. However when I try and force the group update I get an error.

 

Server error : op command for client useridd timed out as client is not available

 

Any ideas?

JeffTQT by L2 Linker
  • 2497 Views
  • 1 replies
  • 0 Likes

Resolved! URL FILTERING

 

 

dear engineers.
could you help me!!

I have the following problem with the URL filter:

I commented that I have blocked the streaming media category in which enters youtube

when I open firefox without any problem with the rule applies both http and htt

...

chromeyou.JPG
firefoxyou.JPG
Edluna by L1 Bithead
  • 3836 Views
  • 5 replies
  • 0 Likes

Resolved! Support for static local IP and Domain Lists

I'd like to start by saying, that this is an amazing tool! Thanks for sharing this, it has great potential and my customer is excited. One question: is there currently any support for creating and maintaining local IP and domain blocklists on the Min

...

nbilal by L3 Networker
  • 5395 Views
  • 4 replies
  • 0 Likes

Google Drive Sync client with Decryption

There seemed to be a work around in the past where you could launch googledrivesync.exe with a --unsafe_network switch that would allow it to deal with the decryption because they seem to have their own preloaded set of CA's the client trusts and doe

...

bbilut by L3 Networker
  • 2657 Views
  • 1 replies
  • 1 Likes

Web GUI Font Readability Issues After Upgrading to 7.1

Since upgrading to 7.1 I've noticed that the new font used in the Web GUI is very hard to read.  In many places it appears squished and just looks wrong.

 

In the list of what's new in 7.1 this is actually touted as a "font update" but it sure seems li

...

Fonts.jpg
SamKear by L1 Bithead
  • 2016 Views
  • 1 replies
  • 0 Likes

PA-500 Throughput

The PA-500 datasheet indicates that the maximum throughput for traffic being filtered by App-ID is 250Mbps

 

 

https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/datasheets/pa-500/pa-500-ds.pdf

 

What it doesn't say, is what if I just have

...

RustyPA by L1 Bithead
  • 2573 Views
  • 3 replies
  • 0 Likes

Decryption causing more sites to fail

Just floating this out to the community. We have had decryption enabled for the past 2 years. In the last 6 months we are adding a new site to the no decrypt category about once a week. We are up to 94 sites that it can't decrypt. Yesterday it was Of

...

craymond by L4 Transporter
  • 4387 Views
  • 6 replies
  • 0 Likes

ACC Behaviour

Hello everyone!

 

I've got a question about the behaviour of the new ACC in 7.0 and above.

 

I can apply a global filter for the action of deny.

 

When I do this, the graphs show no data, even if I click refresh.

 

If I click 'jump to logs' with the

...

bmorris1 by L4 Transporter
  • 2021 Views
  • 4 replies
  • 0 Likes

show counter global filter category flow aspect dos

 

Hi,

 

 

Below is  output of  'show counter global filter category flow aspect dos' 

 

What does it mean by value and rate . Does it mean '143291' packets dropped ?     

 

namevaluerateseveritycategoryaspect      flow_dos_red_tcp11432910dropflowdosf...

sib2017 by L4 Transporter
  • 4779 Views
  • 11 replies
  • 0 Likes
  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels