General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 442 Views
  • 0 replies
  • 2 Likes

Response Page on Internet Zone

Hello Community,

our customer has a Cluster of PA-3020 with PANOS 7.0.2.

We have enabled Application Block Page and the Internal users can view it properly.

Customer has a rule to permit Web-browsing traffic from Internet to DMZ.

 

 

When users try

...

image001.png

Resolved! X-Forwarded-For on Traffic and Threats logs

Hi Community,

I wanted to know if you are able to see the IP of XFF on the Traffic and Threats logs.

Do you know if there are any configuration to enable it or if it will be supported on the next releases?

 

Thanks in advance.

Jacopo.

XML API

hi , i enter follow . but occurs error (Malformed Request)

https://10.21.63.99/api/?type=config&action=set&xpath=/config/devices/entry[@name=%27localhost.localdomain%27]/vsys/entry[@name=%27vsys1%27]/rulebase/security/rules/entry[@name=%27rule1%27]&e

...

PAN could generate system log about max session and cps?

Hi.

I want to know about system log.

When Max Session fully exhausted, system log could be generated?

When CPS limit reached, system log could be generated?

PANOS 5.0 could generated a system log for high DP CPU.

I want to know description of system log

...

Roh1 by Not applicable
  • 3093 Views
  • 3 replies
  • 0 Likes

Resolved! Bottom Custom Reports

So PAN systems come with a lot of awesome custom report options, but I want to find policies that aren't being used very much, perhaps let's say 0 hits in 7 days. I'm attempting to do this in a much more simplistic and preferable-to-read fashion by s

...

question for block amazonaws

Hi I recently got many amazonaws.com IPs listed in my attacker list from my daily report as below. How do I block all traffic from amazonaws, and I cannot find it from my traffic monitor and why? Please give me some hints?

 

52.5.42.249 ec2-52-5-42-2

...

Bin by L1 Bithead
  • 3763 Views
  • 2 replies
  • 0 Likes

How to generate SNMP Trap for testing purposes on PAN OS?

Hello

 

I'm on PAN OS 6.1.8 and I try to test my reporting/alerting system.

Is it a way to generate trap from PAN os from CLI/GUI?

 

 

P.S. This doc https://live.paloaltonetworks.com/t5/Configuration-Articles/SNMP-Trap-for-Port-or-Link-status/ta-p/56

...

_slv_ by L4 Transporter
  • 3896 Views
  • 1 replies
  • 0 Likes

RADIUS authentication and multi-vsys configuration

Hello,

i have a pair of 5020, with multi-vsys environment and i want to be able to separate admin access based on vsys and read-only/read write access. I successfully configured following admin access scenario, using external RADIUS server:

separate

...

Resolved! Configuration Migration between same series appliances

Hello PAN Community.

I would like to read your opinions/comments about the following situation: we currently have a HA Scenario deployed in production with 2 PA-3050 in active-pasive mode, both of them with PAN-0S 6.0.4. We plan to replace the scenar

...

Resolved! SSL Decryption - log for SSL certificate errors?

Hi all,

 

We are using PANOS URL Filtering and SSL Decryption, and we reject a variety of SSL certificate problems such as expired certificates, SHA-1 signing, etc.  When one of our users hits one of these web sites, they get a "block" page.  This in

...

RSKadish by L2 Linker
  • 7135 Views
  • 3 replies
  • 0 Likes

Resolved! Proxy IDs help

Hello

I have a Palo Alto Firewall which wants to have IPsec Tunnel with a peer firewall which is a Checkpoint Firewall. Any of the firewalls can initiate VPN Traffic.

Can someone kindly let me know, what proxy IDs can be set on my Palo alto firewall f

...

  • 23701 Posts
  • 110 Subscriptions
Top Solution Authors
Labels