General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 196 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 878 Views
  • 0 replies
  • 0 Likes

ipv6 aggregator

Is there an ipv6 aggregator on the roadmap?

I noted that the URL aggregator can already extract them when the miners includes ipv6 IPs in the URLs (ex: office365), but did not find a way to get just the IPv6 addresses.

mr.linus by L4 Transporter
  • 2776 Views
  • 1 replies
  • 0 Likes

Resolved! dns amplification attack

Hi,

 

What are the best practices need to be followed  to  protect from the ddos  dns amplification attack . 

How to  filter the  trace  from the  log  if there is any attack happened ? 

Thanks

sib2017 by L4 Transporter
  • 5695 Views
  • 4 replies
  • 0 Likes

Resolved! RegEx for specific DNS strings

I was working on getting Data Filtering to block specific DNS requests with no resolution.

So, I am creating a Custom Application for DNS with a Pattern matching, which is partially working.

Working strings:

Under Objects/Applications/("Added applicatio

...

Export config from TFTP (non-management interface)

I was trying to export my running-config.xml with TFTP. It works fine when doing it from the management interface but is not working from any other interface.

 

If I use the source-ip to export the configuration i get a Timeout even though I can ping m

...

Who's coming to Ignite?!

We're only a week away from Ignite and the Live Community team can't wait. This year, we'll have an even bigger group of folks participating in the event. "reaper", "jdelio", and "kiwi" will all be there, participating in the Live Community booth, br

...

Resolved! Session End Reason column NOT available on PA200

Hi All,

 

I am checking traffic logs under Monitor tab.

In order to troubleshoot issue and understand behavior of a specific traffic flow, I think  "Session End Reason" column is really needed.

That's why I am writing on community.

 

We have two PA f

...

Two Factor Authentication over SSH

I have my Panorma appliance configured to use Radius with 2FA for the management interface and for the web interface that works great.  It prompts for the one time password and authenticates.  But when we try to SSH to the appliance we are not prompt

...

clear user-cache ip command

I know how to clear user to ip mapping using clear user-cache ip <ip address>,

I want to know how i can do it via Gui. I need to give access to one of the users to be able to perform this task.

About FSCK on Panorama

Hello

 

My customer use two M-100s. 

One is used to Panorama and another is used to log-collector.

I upgraded two M-100s from 6.0.9 to 6.1.10.

I used manual upgraded way because environment what can not access to internet.

1. panorama was upgraded to

...

Resolved! How to activate new cert for GUI on 7.0?

Hi all,

 

On 6.1 and prior, I could choose 'Certificate for Secure Web GUI' under Device tab > Certificate Management > Certificate.

On 7.0, I can't find this option.

 

I generated SHA-2 self signed certifacate on the box.

Then, how can I use this ce

...

emr_1 by L5 Sessionator
  • 2449 Views
  • 2 replies
  • 0 Likes

Resolved! Custom Captive Portal Agree to terms checkbox only?

I would like to setup a captive portal on my guest wifi, but I am not interested in capturing info for user ID, I just want to force the users to see a terms of use that they have to click through before connecting.

 

I have looked at the custom temp

...

Tech101 by L1 Bithead
  • 3160 Views
  • 2 replies
  • 0 Likes

multiple shared gateway deployment

Hello folks ,

 

I was wondering if multiple shared gateways (on one firewall ) is allowed . I found a matrix that was saying some PA models support up to 8 shared gateway but inside admn guide it tells us only one shared gateway is possible in the en

...

Drive Mapping with Global protect

Hi Community, 

 

I just needed to run a niggling issue with some of you as we are experienicing with our global protect. 

 

We have global protect to do pre-logon connection to the global protect gateway. Once the user is authenticated we except driv

...

Resolved! packet capturing pa

 

Hi,

in packet capture , what is  actually firewall stage type ? .

Why thers is  rx and tx separate ?

sorry for asking a fuzzy question ?

Thanks

 

 

sib2017 by L4 Transporter
  • 7439 Views
  • 8 replies
  • 1 Likes
  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels