General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 417 Views
  • 0 replies
  • 2 Likes

Active/Active performance benefit/impact

Hi,

Anybody currently using or having had tested HA in an active/active mode with any insights into the the performance benefit or impact of such a setup?

Is the additional complexity worth the effort and is the throughput effectively increased compare

...

Resolved! TFTP file transfer on New Palo Alto PA500 Firewall

Hi Guys,


I have already my files on working tftp server and already connected via serial cable to the firewall. As i know i should also connect one end of patch cord to my PCs ethernet intrface and the other end to the firewall interface, but to with

...

Resolved! How to monitor pending commits

I'm looking for a way to externally check that there are no policy commits pending.

Is there an SNMP OID signalling a commit is pending?

Or, is there a SSH CLI command that shows a commit is pending?

I'm running a PA-3020 with PANOS 5.0.15.

Resolved! User-Id Agent log file behavior

Hello,

I have been running user-id agent in an environment and the log file size is increasing rapidly.

Is there a limit for the file size? and what will happen when the file reaches the limit?

In general, what is the best way to control its size?

File Blocking Block ZIP and Allow DOCX Extension

Hello,

I need to block files with zip extension. (action Block)

Also allow files with extension: doc, docx, xls, xlsx and pdf. (action ¿? ¿?)

What "action" can I use? or How can I create an exception?

The other extensions should ask me confirmation. (act

...

SOC_CSG by L4 Transporter
  • 2838 Views
  • 1 replies
  • 0 Likes

CVE-2015-0235 Ghost

Just starting a thread for  CVE-2015-0235. Ghost

Anybody see any news from PA on this? I have not.

Cheers

choff123 by L3 Networker
  • 9951 Views
  • 11 replies
  • 0 Likes

tcpdump like packet capture on PA

how can check  dhcp packet on PA , for example using tcpdump -i Internal port 67 we see on unix/linux boxes.

how can we check same dhcp request and response packet on PA .

Blocking Teamviewer.

I am testing the ability to block teamviewer on my network. I have a rule that should block the application. In the traffic monitor, I can see the denies for "Teamviewer-base", but it does not prevent the application for being "ready to connect", nor

...

No URL-Log of HTTP/1.1 204 No Content

Hi,

The PA seems not to output a URL log when HTTP response code "HTTP/1.1 204 No Content".

On the traffic logs, the PA could classified the category of HTTP.

But there is no log related with the same Session ID.

According to the pcaps on the client PC,

t

...

komure by Not applicable
  • 2622 Views
  • 2 replies
  • 0 Likes

Issues with Content Update 483-2549

FYI - Having major issues with last night's content update.  Inspection of traffic from our client environment to our domain controllers is causing significant logon/logoff delays.  I changed from an app rule to a traditional port/service rule (as ap

...

Resolved! ThreatID references, or lack thereof

I frequently come across threat notifications where the info in the Threat DB is so sparse as to make the notification useless.

Take for example my threatid du jour, 13742.

"This signature detects NUCLEAR.Gen Command and Control Traffic."

That's it. Try

...

MCmgt by L2 Linker
  • 2628 Views
  • 2 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels