General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 253 Views
  • 0 replies
  • 1 Likes

Resolved! DNS sinkhole log action ons DNS rule

https://live.paloaltonetworks.com/t5/Articles/How-to-Configure-DNS-Sinkhole/ta-p/58891 explains how to configure DNS Sinkholing.

In step 3 the anti-spyware profile is added to the security rule that allows DNS traffic.

 

Does logging (at session end) ne

...

dieter_b by L4 Transporter
  • 6361 Views
  • 11 replies
  • 0 Likes

Resolved! Best Practice for insufficient-data

Hi all,

 

What are you doing with traffic identify as "insufficient-data"?

I know we are supposed to do pcap and trying to identify if then create custom app but ... on real life 

 

Although you have created a rule for denying all, insufficient-data stil

...

rule.png
log
VinceM by L5 Sessionator
  • 23914 Views
  • 3 replies
  • 0 Likes

NAT DIPP fallbacks

Hi there

Im seeing  NAT DIPP fallbacks quite a lot relating to a NAT rule, theres does not appear anything not working so im wondering if its somehting that im not noticing work.  Ocasionally it feels more sluggish that it should when browsing web pag

...

SQLinjection not being detected by PA

Hi, we are receiving these tries about SQL injection but our Palo alto is not detecting it. How can we do that PA detect this SQLi????? we have updated the threats signatures.

 

Sql injection

GET /ficha-modelo?id=2&entidad=99999999%27%20oR%20%277%27=%27

...

SOC_CSG by L4 Transporter
  • 4289 Views
  • 8 replies
  • 0 Likes

Hybrid whitelist/blacklist Policy

I played around on our lab FW a bit but couldn't get this working. Here are my objectives:

- Create a "White List" custom URL category that allows only a handful of web sites. (Working with URL Filtering profile.)

- Log all permits (Working. I got this

...

Resolved! URL Filtering - Bypass for Level 1-2 Support

Good Afternoon

 

I have a request to look into a way a Level 1 - 2 Support Person can easily bypass a blocked URL.  Be it by policy, a custom button on the response page, captive portal, or a combination of whatever might be needed to do so.  Has anyon

...

Resolved! How many can I create url-filtering profile on 5050?

Hello,

 

I have two questions.

1.How many can I create url-filtering profile on 5050?

 

2. And I have watched as below output of cli on 3020,

sylee@PA-3020-uquest(active)> show system state filter cfg.general.max* | match profile

cfg.general.max-profile: 15

...

Wildfire .ace archive support

Does Wildfire support the .ace filetype?  I've received messages that should have been filtered that have .ace payloads.  The message attachments are clearly malware based on virustotal.  The message bodies are classic phishing type attacks. I have a

...

Drop all packets

I added an exception to a spyware profile to drop all packets and it now says its dropping and allowing the packets how can that be?

jdprovine by L4 Transporter
  • 4639 Views
  • 9 replies
  • 0 Likes
  • 23627 Posts
  • 107 Subscriptions
Top Liked Authors
Labels