General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Wildfire Submissions

Hi,

Just deployed my first Palo Alto device.  My question revolves around the Wildfire Submissions area of the Monitor page.  When we first turned on Wildfire, events would appear for each time a file was submitted to Wildfire.  But then no events for

...

Resolved! Proxy avoidance Issue

Hello Gents,

We are facing an Issue with Palo Alto 5050, since we found some web proxies not seen by the Appliance, like

https://incloak.com/

and most of the dynamic proxies in this website are working

https://proxy.org/

Regards,

Maher

Run a user login/logout report

I am trying to run a monthly report that includes all the information in the NETWORK --> GATEWAYS --> REMOTE USERS --> PREVIOUS USERS report.

This report shows the Domain, User, Computer, Client, Private IP, Public IP, Tunnel Type, Login at, and Logou

...

wellss by Not applicable
  • 5550 Views
  • 4 replies
  • 0 Likes

Resolved! SNMP OID to monitor subinterfaces?

Hi All

We are currently trying to monitor Layer 3 sub-interface bandwidth via SNMP. I've been checking the enterprise MIBs for palo alto, and there doesnt seem to be any such OID. Does anyone have an idea what OID to use, if even possible, to monitor

...

dvas0004 by Not applicable
  • 2364 Views
  • 5 replies
  • 0 Likes

PAN::XAPI #ERROR: Unable to retrieve configuration from firewall: LWP::UserAgent: 500 Can't verify SSL peers without knowing which Certificate Authorities to trust

We are using the PAN::XAPI quite often to verify and fix configurations, but I ran into a problem when setting the "ua_ssl_opts"...

#ERROR: Unable to retrieve configuration from firewall: LWP::UserAgent: 500 Can't verify SSL peers without knowing wh

...

wormp by L1 Bithead
  • 1170 Views
  • 0 replies
  • 0 Likes

Secure GlobalProtect Portal

I have set a Global Protect Portal. It works fine.

Now it's possible to install the client an each PC.

It's possible to secure through an User Certificate?

So that only User with a PC from our domain can connect remotely.

There are some other ideas to se

...

Blocking Apple iTunes Radio

If anyone is interested, I was able to block iTunes Radio by adding the following URL's into the Block URL list of my URL Filter:

streamingaudio.itunes.apple.com

radio.itunes.apple.com

pri.kts-af.net  (not sure if needed, but found a lot of people menti

...

Resolved! New Sessions

HI

I have a question, what happen when the firewall have a active session and need create a same session but the old session is active?, for example, the firewall have a following session

10.50.213.22 port 1020 -----> 10.65.22.15 port 515

this session i

...

Resolved! How is that? Destination 0.0.0.0

Hi,

how is that possible that a lot of syn flood packets have as destination 0.0.0.0

There are certain IP-Adresses protect against syn-flood and of course they will be dropped like thos one.

But destination address with 0.0.0.0 looks for me like ????.

Is

...

kdd by L4 Transporter
  • 9009 Views
  • 2 replies
  • 0 Likes

PA-500 differents implementations scenarios

Hi All,

     Please I need your help to prepare a design document for the implementation of a PA-500 for one of our client, following is the existing architecture of the client site:

The customer need is to control the Internet flow so they can do the

...

Lahcen by Not applicable
  • 1283 Views
  • 3 replies
  • 0 Likes

VPN Tunnel Comes up Automatically

Hello,

I have a VPN tunnel between a Palo Alto and a Juniper SSG. Even when there is no traffic from the end devices coming through, the VPN tunnel somehow stays up. I would expect the IKE and IPSEC SA's to time out and stay down until traffic is pass

...

Alert Notification in Panorama

Hello,

Can you please let me know hwo to confirured the alert in panorama for Vulnerability Protection, Antivirus or Antispyware .


Need it very urgent . Please help.


Thanks

Amber

tiwara by L3 Networker
  • 1369 Views
  • 6 replies
  • 0 Likes

User ID agent is getting Stopped Automatically

Hello ..

We have PAN user ID agent version 4.1.8 -2 installed in our server .

The service is getting stopped automatically . When try to stop the process from services.msc in Windows server it gives the error that service is still running .

Need to stop

...

tiwara by L3 Networker
  • 2180 Views
  • 9 replies
  • 0 Likes

User Activity Report Browse Time --:--:--

I am running some user activity reports and for some sites the browse time is --:--:--

What does this mean? Does it mean that PA was unsuccessful at gather the browse time, or does it indicate an advertisement in the page, embedded content, or somethi

...

mike_cc by Not applicable
  • 3167 Views
  • 5 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors