This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4127 Views
  • 0 replies
  • 0 Likes

New blockIPS prototype doesn't have URL specified in config

From ETOpen.yml blockIPs: author: Gregory Roehl (paloaltonetworks.com) development_status: STABLE node_type: miner description: > Raw IPs for the firewall block lists. These come from Spam nets identified by Spamhaus (www.spamhaus.org), Top Attackers listed by DShield (www.dshield.org), Abuse.ch. config: source_name: ET.block_ips attributes...

Multicast on pa-7050

We are attempting to configure pim sparse mode via the PA-7050 which is going to be used as a control point for various virtual routers on our juniper mx core. From what I can tell the pim is configured correctly, and the proper rp has been selected. multicast routes appear correct, however the traffic is still being dropped. This is the co...

terrys by L1 Bithead
  • 2280 Views
  • 1 replies
  • 0 Likes

minemeld-engine exits after auto-update to 9.20

from minemeld-engine log jjust after the update 2016-09-09T06:48:49 (20984)launcher.main INFO: mm-run.py arguments: Namespace(config='/opt/minemeld/local/config', multiprocessing=0, verbose=False)Traceback (most recent call last): File "/opt/minemeld/engine/current/bin/mm-run", line 11, in <module> sys.exit(main()) File "/opt/minemeld/e...

Sidewinder 8.x netmaps and secondary interface ip addresses

Hi when I upload the netmaps config file, nothing show up under Nat i am not sure what is missing, The second issue i am having, the interfaces i have on the sidwinder have alias IPs attached to each interface (they are secondary IPs), the conversion tool only convert the first IP address of the interface and not the other ones. I appreciate any...

rfreiha by L1 Bithead
  • 2458 Views
  • 2 replies
  • 0 Likes

Throughput tesing with new ISP Link

After we provison new ISP link and connect directly to firewall is there way we can do throughput testing from Interface to check we are getting correct speed quoted by ISP , IF I connect ISP link directly to laptop assign IP and do speedtest it works fine.So next point is firewall , so was thinking if there is way we can do this.

What is your experience of using site-to-site VPN with PA devices and how is the performance?

Im looking for those with reallife experience from running site-to-site VPN with PA devices both pro (good) and con (bad) stuff that might float up to the surface. How is the reliability, how is the performance, how is the troubleshooting (if any) etc? For example looking at this test http://blog.webernetz.net/2016/07/26/palo-alto-vpn-speedtests...

mikand by L6 Presenter
  • 4031 Views
  • 3 replies
  • 0 Likes

MineMeld Hyper-V support

Hi all, Has anyone tried installing MineMeld on Hyper-V, I know we support Azure but didn't know if it works on Hyper-V? Thanks, Tim

tkirk by L1 Bithead
  • 3634 Views
  • 1 replies
  • 0 Likes

RedHat (+Akamai) IP ranges

Would it be possible to add a miner for the Red Hat Subscription Manager (RHSM)?They do advice to use domains name as filter rather than IP addresess [1] (mainly because they use Akamai's CDN), but we prefer to have that kind of traffic under control. There is a public CIDR list [2], but as you need an account in the RedHat portal, they provide ...

Beta 8 testing

I am curious how we can get the Beta 8 bits on our PA-200s. ThanksBob

BobW by L1 Bithead
  • 3459 Views
  • 3 replies
  • 0 Likes

What tunnel options do you have for site-to-site using PA devices?

IPsec is the obvious one but lets say you have already taken care of the protection of the traffic, I failed to see if the PA devices for example supports GRE tunneling (basically for performance reasons I would just like the tunneling itself, not the encryption). If not, any of you who might know if GRE (or similar) is even on some kind of road...

mikand by L6 Presenter
  • 2455 Views
  • 1 replies
  • 0 Likes

AWS Palo Alto and Configuring Interfaces

I'm new to AWS, but not new to Palo Alto. We are at the initial phases of building out our AWS environment. I'm getting familiar with AWS but not an expert by any means. I thought I'd start with a trial version of Palo Alto for AWS. At any rate, I've followed some Palo Alto documentation (Set Up the VM-Series Firewall in AWS) to get things rolli...

Resolved! What the different between 'count' and 'repeat count' in the report?

Hi everyone, I need to know the diffrent between 'count' and 'repeat count' in the report. I found the description of 'repeat count' in the Admin Guide only, but can't found 'count'. - Repeat Count (repeatcnt): Number of sessions with same Source IP, Destination IP, Application, and Subtype seen within 5 seconds; used for ICMP onlyhttps://www.p...

Kanitin by L1 Bithead
  • 7635 Views
  • 2 replies
  • 0 Likes

HA Cluster different transceiver type on each firewall

It is possible to have one firewall to use mutilmode sfp and another using single mode sfp for the same interface? FW1-ethernet1/13 (1G Single Mode) > Switch A (1G Single Mode)FW2-ethernet1/13 (1G Mutil Mode) > Switch B (1G Mutil Mode) Thanks

shaunyt by L0 Member
  • 2692 Views
  • 1 replies
  • 0 Likes

Resolved! Google disclaimer and SSL Decryption

Hello, I have enabled SSL decryption on a PA-500 running PanOS 7.0.9 for testing purposes (before enabling in prod environment). All seems to be working fine, except with the Google Disclaimer that randomly occurs and that you have to agree with in order to go ahead with your google searches... Without SSL decryption it displays normally, but wi...

  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks