General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Failed to insert certificate into configuration

Hi,

 

When I try to generate self-signed certificate Device -> Certificate management -> Certificate -> Gererate.

I got error "Failed to insert certificate into configuration. Only self signed CA certificates can have identical subject and issuer fie

...

nabokih by L1 Bithead
  • 13381 Views
  • 1 replies
  • 1 Likes

Cutwail/PushDo SMTP Attack Vulnerability Detection

I've recently set up a new PA-100-VM and been closely analysing it along with all of the traffic that goes through it.  It is running 7.0.3 along with the latest updates to all definition files (updated nightly).

 

In the process of doing this I've d

...

Resolved! Global protect with DHCP client on WAN interface

I have a PA-200 which is configured with DHCP-client on the WAN interface.

When configuring Global Protect, I'm not able to configure the gateway address. When I choose the WAN interface as the gateway address interface, I'm not able to choose the IP-

...

torm by L4 Transporter
  • 8306 Views
  • 10 replies
  • 0 Likes

high dataplane cpu utilization

Hi,

 

I have PA-2020 which has high dataplane cpu utilization. It is stuck at 100% during business hours. It drops to 25% after work. I suspect too much traffic but is there an easy way to check what sessions/applications are the most cpu intensive?

...

UMWL by L0 Member
  • 2932 Views
  • 2 replies
  • 1 Likes

Resolved! WildFire Config

I have a question re Wildfire config.

 

When the setting is set to 'forward' it gets sent PA cloud for analysis, provided it finds something bad , I assume it is put into the WF signature and next time the file is seen it gets blocked ?

 

What does t

...

RC-BHF by L2 Linker
  • 1594 Views
  • 1 replies
  • 0 Likes

Resolved! PA 200

What's the best decription for a Palo Alto 200 device? Firewall or Network Security device?

tsadlier by L0 Member
  • 2727 Views
  • 4 replies
  • 0 Likes

Outlook 2010 Clip Art Thumbnails not Displaying

We just switched to PAN DB and are using the PAN to do SSL decryption.  The policy i am using also does not have safe search enforcement enabled.

 

What i have tried is, do a packet capture and found the exact uri, exempted that uri from decryption a

...

Resolved! Active/Active HA in vwire mode - Link Monitor

When configuring an active/active pair of 5060s in vwire mode, is there a need to configure link monitoring? the 5060s are setting behind an HA pair of Cisco 5585s and want to ensure the Palos failing over will not affect the traffic from the ASAs.

 

...

ICMP Output

I'm getting odd ICMP output when I try to ping from the untrust interface to a location on the internet. The ping is successful but there is additional output.

Has anyone seen this before?

 

fw> ping source x.x.x.x host 8.8.8.8
PING 8.8.8.8 (8.8.8.8)

...

RFalconer by L3 Networker
  • 1903 Views
  • 0 replies
  • 0 Likes

Resolved! Acknowledge Traffic Log Threshold Alarms

We recently reached the point where our traffic logs are reaching 90% of quota and alarms are being generated.  I understand that this behavior is normal and I do have the option of turning alarms off if I wish.  I don't want to turn them off but I s

...

SystemAlarms.jpg
herrmoss by L2 Linker
  • 4433 Views
  • 5 replies
  • 0 Likes

Using wildcard pattern/ regex in URL filter

Hello,

 

I like to exclude subdomains from decryption. Therefore I've created a URL category. But I don't like to exlude all subdomains only specific subdomains.

 

For example: I like to exlude domains starting with "whatsapp" and ending with "facebo

...

  • 24185 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels