General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2933 Views
  • 2 replies
  • 14 Likes

Resolved! How to monitor pending commits

I'm looking for a way to externally check that there are no policy commits pending.

Is there an SNMP OID signalling a commit is pending?

Or, is there a SSH CLI command that shows a commit is pending?

I'm running a PA-3020 with PANOS 5.0.15.

Resolved! User-Id Agent log file behavior

Hello,

I have been running user-id agent in an environment and the log file size is increasing rapidly.

Is there a limit for the file size? and what will happen when the file reaches the limit?

In general, what is the best way to control its size?

File Blocking Block ZIP and Allow DOCX Extension

Hello,

I need to block files with zip extension. (action Block)

Also allow files with extension: doc, docx, xls, xlsx and pdf. (action ¿? ¿?)

What "action" can I use? or How can I create an exception?

The other extensions should ask me confirmation. (act

...

SOC_CSG by L4 Transporter
  • 2441 Views
  • 1 replies
  • 0 Likes

AEP[TRAPS]: ninja mode

Hello! Advanced Endpoint Protection Administrator's Guide [3.1] (https://live.paloaltonetworks.com/docs/DOC-8084) is mentioning that "Additional advanced EPMs are hidden and are only accessible in ninja mode". Could you, please, describe additional f

...

andreip by L2 Linker
  • 1916 Views
  • 0 replies
  • 0 Likes

CVE-2015-0235 Ghost

Just starting a thread for  CVE-2015-0235. Ghost

Anybody see any news from PA on this? I have not.

Cheers

choff123 by L3 Networker
  • 9067 Views
  • 11 replies
  • 0 Likes

tcpdump like packet capture on PA

how can check  dhcp packet on PA , for example using tcpdump -i Internal port 67 we see on unix/linux boxes.

how can we check same dhcp request and response packet on PA .

Blocking Teamviewer.

I am testing the ability to block teamviewer on my network. I have a rule that should block the application. In the traffic monitor, I can see the denies for "Teamviewer-base", but it does not prevent the application for being "ready to connect", nor

...

No URL-Log of HTTP/1.1 204 No Content

Hi,

The PA seems not to output a URL log when HTTP response code "HTTP/1.1 204 No Content".

On the traffic logs, the PA could classified the category of HTTP.

But there is no log related with the same Session ID.

According to the pcaps on the client PC,

t

...

komure by Not applicable
  • 2263 Views
  • 2 replies
  • 0 Likes

Issues with Content Update 483-2549

FYI - Having major issues with last night's content update.  Inspection of traffic from our client environment to our domain controllers is causing significant logon/logoff delays.  I changed from an app rule to a traditional port/service rule (as ap

...

Resolved! ThreatID references, or lack thereof

I frequently come across threat notifications where the info in the Threat DB is so sparse as to make the notification useless.

Take for example my threatid du jour, 13742.

"This signature detects NUCLEAR.Gen Command and Control Traffic."

That's it. Try

...

MCmgt by L2 Linker
  • 2269 Views
  • 2 replies
  • 0 Likes

Custom URL Category imports via XML API

Greetings,

I have been trying to populate a custom URL category with a list of URLs that we maintain ourselves. Ideally, I would like to do this using the XML API, on a schedule. I have been able to successfully call the API, but I haven't been able t

...

k.leune by L0 Member
  • 1736 Views
  • 0 replies
  • 0 Likes
  • 24030 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors