General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Best practice for blacklisting App-IDs

What is the best practice for blacklisting potentially harmful Application ID's(from "trust" to "untrust" over 80/443)? I started blocking on specific App-ID's, but maintaining this blacklist per App-ID will be kind of cumbersome. I'm thinking about using Application Filters to block based on Application subcategory. The only issue here is ...

jambulo by L4 Transporter
  • 6175 Views
  • 4 replies
  • 0 Likes

Question/FR for mining rDNS zones?

I have a environment that is currently using rDNS to identify host security policies, and it has older Checkpoint firewalls use this data dynamically via CP Domain Objects to tie rDNS lookups to security policies. This obviously has some challenges and scaling limitations, but fundamentally allows system owners to classify common devices into pr...

mpetzold by L0 Member
  • 3360 Views
  • 1 replies
  • 0 Likes

Feature Request Policy Export

Hi paloalto community I really don't knwo where I should place my feature request. I hope it's the right place and somebody notice my request. I would appreciate an export button for policies and objects directly to csv. It should be possible to filter rules like the traffic log and then export the view (like the log export). I would be fine t...

Error useridd log

Hi, We are having a lot of strage log in the useridd.log file. We dont know why we are receiving these logs. The LDAP is configured correctly and we have the read permissions for everything in AD user. Users are working fine. Please why are we recinivng these logs and how ca we solve?? 2016-04-19 09:01:58.577 +0200 connecting to ldap://[19...

Dynamic VPN to Dynamic VPN

I'm wondering if anyone has addressed this yet. I am setting up a VPN between a PA-200 and PA-VM100. Both of the sides have a dynamic IP and we're using an FQDN DNS forwarder as our Peer IDs. Both sides won't initiate the connection since they're both set to dynamic. I've looked at workarounds like NATing to an FQDN etc but I couldn't find any...

ahughes by L0 Member
  • 3383 Views
  • 1 replies
  • 0 Likes

Global Protect client upgrades are not working on Windows

We're trying to push out a newer version of the Global Protect client with the "Prompt" method via the Portal. The users are promped, but when they click Yes, it never upgrades - ever...we've had clients connected for hours with no success. The upgrade works fine for our OSX clients but never succeeds with Windows machines. We're curren...

kk555 by L0 Member
  • 3408 Views
  • 3 replies
  • 0 Likes

Scheduled Report Graphical Content Missing

Hello Guys, l have a number of scheduled reports that are sent out to the security team however for the last month or so the pdf reports have been landing in the recipient's mailbox with the graphical content missing. I have run the reports involved manually and they seem fine, also viewing them from the ‘Reports’ repository seems good. Thank y...

Strange Local Admin authentication Issue

Hi, Just want to float this out in the community to see if anyone has expirienced same issue. We have a production PA-200 at one of our sites with Local admin account and AD intergration, the preferred login is using the our AD accounts and last week that stopped working not sure why. We then tried to login using the local Admin account and co...

sokonta by L2 Linker
  • 2912 Views
  • 1 replies
  • 0 Likes

Content 578 Customer Advisory [Updated]

[Update 4/19: Added Content 578 Incident Report] With Applications and Threats Content version 578, Palo Alto Networks received reports that customers running PA-3000 series devices may experience an issue with resource exhaustion on their firewalls. To address these reports, Palo Alto Networks has temporarily removed this content update while...

Help With MineMeld for Domain Blocking for DNS Sinkhole

Hello I am new to MindMeld and I am seeking help with an issue: I wanted to configure an External Block List to use with DNS sinkhole. I need a spyware blocking of malicous sites (Like URLF) but one that will work based ib DNS only! I tried to use the miner on the mindmeld default config with no luck - Its seems that all of them are IP ba...

Eliram by L0 Member
  • 9522 Views
  • 1 replies
  • 0 Likes
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels