General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Join Us for a Tech Deep Dive Miniseries!

 

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.

 

Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real

...

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 465 Views
  • 3 replies
  • 1 Likes

Blocking WebCam Traffic

Hello All,

I'm sort of new to the Palo Alto firewall world, I had a question about blocking traffic to those adult free live cam sites, I dont want to block skype or facetime or anything simliar. All I really want to do is block specific traffic from

...

shane by Not applicable
  • 1155 Views
  • 4 replies
  • 0 Likes

Resolved! How to get subinterface counters ethernet1/2.251?

It’s easy to get snmp  counters interface.

Example: ethernet1/2

But how to get sub interface counters ?

Example: ethernet1/2.251  (vlan 251)

https://live.paloaltonetworks.com/docs/DOC-1744#comment-5123

Sacem by L1 Bithead
  • 1198 Views
  • 2 replies
  • 0 Likes

allow Skype and Block Skype VoIP and file sharing

Hi

I've been asked if I can use our Palo's to allow skype messaging only and block users to make calls and send/receive files using Skype.  I already seen some discussion saying that this is not possible but i'm wondering if paloalto comes with someth

...

Lahcen by Not applicable
  • 1137 Views
  • 1 replies
  • 0 Likes

Resolved! Help setting up a rule to block all traffic at night

OK, I'm new to firewalls in general and I inherited our Palo Alto PA500 with PANOS v5. I"m trying to set up a rule that doesn't let any traffic in or out of the building from 7:00 pm to 7:00 am. Currently my boss has a rule that the last person out u

...

acole by L1 Bithead
  • 1683 Views
  • 6 replies
  • 1 Likes

Can PA block Web shell or shell script?

Hello, guys~

One of my customer want to know whether the Pan block web shell or shell script. In my opinion, there's no ips which can block those attacks 100%.

Threat prevention of the PA is signature base also, which means if it detects well-known we

...

JTR by Not applicable
  • 1664 Views
  • 1 replies
  • 0 Likes

packet size issue

Hi All,

Noticed unable to ping packet size above 996 after upgrading to PAN OS 5.

few of our internet apps(cloud) is acting intermittently

Anyone encountering the same issue?

Any advice is appreciated?

Thanks.

> ping size 995 source 172.21.194.22 host g

...

ateo by Not applicable
  • 1943 Views
  • 1 replies
  • 0 Likes

Resolved! Traffic log showing "attempted" rules

Hi,

I have a few security policies (below) and did some testing on them, and found the traffic log displaying some interesting results; I have an idea of why this shows up in the log, but may be somebody more experienced can confirm.

I have a rule that

...

MMCiobanu by L3 Networker
  • 1179 Views
  • 2 replies
  • 0 Likes

Wildfire Activation

I successfully actived Wildfire in my environment..however, no data is being pushed to my external syslog server (Splunk) or the online Wildfire portal.  Is there a sample file I can download to test if its working? 

rrau by L3 Networker
  • 694 Views
  • 2 replies
  • 0 Likes

External Captive Portals

Hello I have a question about external captive portals ..

My client is migrating the firewall to Palo Alto, but he wants to keep the captive portal that is already in use in another box. My question is: How can I make users be visible and identifiabl

...

Jean by L0 Member
  • 1232 Views
  • 2 replies
  • 0 Likes

Resolved! Stop WMI-probing on User-ID Agent

Hey there,

I am glad to join this community and and excited to work with these new age firewalls.

To keep this question short and sweet, we have to PA-500's and are using GlobalProtect for VPN, and it works awesome! However, I did not set it up, but di

...

Zewwy by L2 Linker
  • 3404 Views
  • 6 replies
  • 1 Likes

SSL Decryption firewall vs web proxy?

Hi,

I see the Palo Alto firewalls can do SSL decryption inbound and outbound in order to inspect the contents for threats is there an advantage to doing this on the palo firewall as opposed to the ironport web proxy?

It looks to me like a good idea to

...

sworton by L0 Member
  • 1403 Views
  • 1 replies
  • 0 Likes

Resolved! cannot understand drop reason

hey

i have a client that connects to a remote site using  GP, and that site have s2s vpn to my site,

we have problems connecting to a server in that site, we can i cannot see and drops in the traffic or threat logs,

i have put filter on the ips and used

...

minow by L4 Transporter
  • 5620 Views
  • 11 replies
  • 1 Likes
Top Liked Authors