General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 429 Views
  • 0 replies
  • 2 Likes

Vulnerability exemption

Hi


what is actually
simple-client-critical
simple-client-medium

 

I

 

I  want to change the default action from alert to block .
the rule is under simple-client-medium , but the search result shows it is under
simple-client-high

Thanks

 

 

 

36029.png
sib2017 by L4 Transporter
  • 1871 Views
  • 2 replies
  • 0 Likes

URL White Listing

Hi all,

 

First of all, we are impressed about MineMeld, thanks Luigi for your ideas and work.

 

We have just started to play with MineMeld and wandering the format to whitelist domains and network ranges using stdlib.listURLGeneric (as wlURL)

 

We would l

...

Resolved! CLI checking licenses

Hi everyone! 2 quick questions in 1:

 

-To be able to include a URL as destination in a policy, do I need to have license for URL filtering?

-How can I check what licenses do I have in the CLI?

 

Thank you!

No Email protection for SaaS

The closest way to protect a SaaS email soltuion I have found is Proofpoint which has a wildfire API hook option.

 

I am supprised there is no SaaS service for forwarding attechments or inline scanning of email directly from paloalto networks.

Tech101 by L1 Bithead
  • 2189 Views
  • 3 replies
  • 0 Likes

TAP interface questions

I'd like to monitor a portion of my network on my failover PA in TAP mode.

 

Will this affect my HA pair at all? 

 

Is it possible to set up an aggregate TAP of 2 ports?

 

thanks in advance...

any to application default

We are working on hardening our firewall rules by replacing any to application default(service) and from any to the specific application(application). Example - we changed any to web-application and any to application-default. People hitting the same

...

jdprovine by L4 Transporter
  • 3953 Views
  • 11 replies
  • 0 Likes

ipv6 aggregator

Is there an ipv6 aggregator on the roadmap?

I noted that the URL aggregator can already extract them when the miners includes ipv6 IPs in the URLs (ex: office365), but did not find a way to get just the IPv6 addresses.

mr.linus by L4 Transporter
  • 2640 Views
  • 1 replies
  • 0 Likes

Resolved! dns amplification attack

Hi,

 

What are the best practices need to be followed  to  protect from the ddos  dns amplification attack . 

How to  filter the  trace  from the  log  if there is any attack happened ? 

Thanks

sib2017 by L4 Transporter
  • 5245 Views
  • 4 replies
  • 0 Likes

Resolved! RegEx for specific DNS strings

I was working on getting Data Filtering to block specific DNS requests with no resolution.

So, I am creating a Custom Application for DNS with a Pattern matching, which is partially working.

Working strings:

Under Objects/Applications/("Added applicatio

...

Export config from TFTP (non-management interface)

I was trying to export my running-config.xml with TFTP. It works fine when doing it from the management interface but is not working from any other interface.

 

If I use the source-ip to export the configuration i get a Timeout even though I can ping m

...

Who's coming to Ignite?!

We're only a week away from Ignite and the Live Community team can't wait. This year, we'll have an even bigger group of folks participating in the event. "reaper", "jdelio", and "kiwi" will all be there, participating in the Live Community booth, br

...

Resolved! Session End Reason column NOT available on PA200

Hi All,

 

I am checking traffic logs under Monitor tab.

In order to troubleshoot issue and understand behavior of a specific traffic flow, I think  "Session End Reason" column is really needed.

That's why I am writing on community.

 

We have two PA f

...

  • 23698 Posts
  • 110 Subscriptions
Top Solution Authors
Labels