General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

AV version confusion

Hi all,

 

I have a HA pair (A/P) of PA-500s and one of the devices seems to be giving mixed messages about the version of the AV definitions in use.  This has been the case for a couple of weeks now.

 

It is not causing problems as such, but it is not ri

...

pa-av-post1.png
pa-av-post2.png
pa-av-post3.png
DavePalo by L4 Transporter
  • 3061 Views
  • 2 replies
  • 0 Likes

Palo Alto Redundant interface

Hi Guys,

 

i want to connect the Palo Alto in a cross connection to switches. In cisco there is something as Redundant interfaces (link http://www.cisco.com/c/en/us/td/docs/security/asa/asa80/configuration/guide/conf_gd/intrface.html#wp1046014)

 

is some

...

connectivity.jpg
NiteshS by L2 Linker
  • 5918 Views
  • 5 replies
  • 1 Likes

Facebook videos working again?

So I've set URL filtering to block on the "streaming-media" category which has successfully blocked Facebook videos for months. This week, the videos started working again and it seems it's because they're using a different CDN domain (or multiple on

...

Problem upgrading GlobalProtect

Hi,

I’ve some problem upgrading GlobalProtect

Now I’ve 2.1.1 version

Activating a new version (I try with 2.2.2 and also with 2.3.1) automatic upgrade fail and I need to manually remove GlobalProtect and install new version again.

 

I also tried to instal

...

diennea by L3 Networker
  • 2487 Views
  • 1 replies
  • 0 Likes

How to export a list of disabled security policies

Hey all;

 

This is probably a question that's been asked before but I'm wondering if there is a way to export a list of all security policies currently disabled.  I'd like to have a short list for review.  I've only been able to find the CLI to show un

...

cafowler by L2 Linker
  • 2448 Views
  • 1 replies
  • 0 Likes

Resolved! Application Subcategory Report

I want to know how to run a Report on all users who used a File-sharing App. If i use Traffic Log i dont see Application sub category as the Attribut choice.

parichie by L0 Member
  • 2091 Views
  • 1 replies
  • 0 Likes

Resolved! Public wildcard certificate for use with Captive Portal

Hi guys,

 

I have a scenario whereby we have a publicly issued wildcard certificate for our organisation and I'm wanting to use this in conjunction with Captive Portal on the PA-500. I've set all policies up and configured Captive Portal to redirect to

...

Any luck with 7.0.2 out in the field?

I am curious to see if anyone has upgraded to the newest 7.0.2.  I tried 7.0.1 but had a few issues with a commit command to one of my firewalls.  Still working on that but has anyone installed 7.0.2 and are you happy with it? 

 

Broker by Plenary Networks

Hey everyone - 

Wondering if anyone out there is using Broker by Plenary Networks to do 802.1x user-id?  If so, would love to connect and bounce a couple questions off of you!

 

Thanks!

Matt

Resolved! Management Interface

Hi, Is it a good idea to connect the mgmt interface directly to wan ? or should it only be accessible locally and via an access server for remote management ?

Global Protect - Problem with name resolution DNS/WINS

Dears,

 

We are facing a strange problem... sometimes external users connected via global protect cannot resolve names without the sufrix domain... 

 

Example:

\\NAMESERVER

or

http://netflow:8080

 

Strange behavior below: when we ping that name we see that it

...

ScreenShot162.jpg
ScreenShot163.jpg
ScreenShot161.jpg
ScreenShot164.jpg

Custom vulnerability Signature

Hi,

 

I am trying to create a custom threat signature based on the HOST: header in the URL request and URI request field. The signarure is working as expected. Issue is when I tried to add a pattern which is less than 7 bytes in http-req-host-header fi

...

  • 24308 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels