General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Event risk report for email scheduler

Hi Friends,HULK hshah Steven Puluka panos panagent,

I want the report related firewall activity  like system related eg: admin login, changed made, suspious activity etc. risk report once in day. pls suggest.

Thanks in advance.

Regards

Satish

Satish by L4 Transporter
  • 1534 Views
  • 1 replies
  • 0 Likes

Ping thru device and static route qestion

Hi,

i have one 2050n device in my lab; device is running 4.1.6.

Interface 1/1 is configured for as dhcp client and i am able to ping update server and obtain dynamic updates. I have no devices/clients connected to inside LAN. Inside lan is on ethernet

...

Dragan by Not applicable
  • 1711 Views
  • 1 replies
  • 0 Likes

bit9 integration

Is it still possible to integrate bit9 with the PA? If so has anyone tried it and is it effective? Other comments pro or con would be appreciated

jdprovine by L4 Transporter
  • 1575 Views
  • 1 replies
  • 0 Likes

Resolved! SSL decryption using incorrect security policy

Hello all,

I am testing out SSL decryption on a few categories.  For now I am using a system generated certificate and it works in decrypting the categories I have selected.  The problem is that once it is decrypted, it doesn't use the proper security

...

ClintL by L2 Linker
  • 4137 Views
  • 4 replies
  • 0 Likes

Palo Alto BotNet Reports

Hi!

I've got a question about BotNet reports available on Palo Alto firewalls. Maybe someone has an experience on how accurate they are, what logic they are using and how to better tune them to display more precise information?

At this point I have all

...

IPSEC Phase-1 fails as initiator but not as responder

Hello support community,
I'm using a PAN 3020 A/P cluster on the perimeter running 6.0.9.  At all of my remote sites I have a cisco ASA that uses IPSEC tunnels to connect back to the main network.  The IPSEC tunnel configuration (IKE phase 1, IKE phas

...

dan731028 by L3 Networker
  • 4830 Views
  • 2 replies
  • 0 Likes

Config Backups Explained

Is a KB article out there that explains what each type of config export is and what is included? Looking through our Palo Altos I can see these 6 different config exports...

Named Configuration Snapshot

Candidate Configuration

Configuration Version

Devic

...

jambulo by L4 Transporter
  • 7306 Views
  • 7 replies
  • 0 Likes

User agent recommended placement

What is the recommended Windows machine to run the user agent for version 6.

Our AD servers are at an offsite data center (5 miles away) and we have limited physical access to systems installed at datacenter.  If agents are installed at data center th

...

merrydc by L1 Bithead
  • 1448 Views
  • 0 replies
  • 0 Likes

Antivirus Decoder Action

I feel silly asking this - wouldn't you want a deny on any decoder where a virus is detected rather than allowing the traffic and just throwing an alert?

Error in XML API Usage Guide (Section 2.2.4 Edit)

The example given by the XMP API Usage Guide for the Edit command which replaces group membership of a static group is incorrect.

The guide shows the syntax for providing the value for the element parameter: <static><entry name='test'><member>abc</me

...

Alextc by Not applicable
  • 2525 Views
  • 0 replies
  • 2 Likes

GlobalProtect with "Vodafone Mobile Connect"

Hey there,

my colleagues are not able to connect via the HSPA USB Stick "Vodafone Mobile Connect" with our GlobalProtect gateways.

I do not see any error-message on the Firewall, only a successful log in but the client disconnect after ~1 second. Also

...

Debugging OCSP query errors

Our GlobalProtect setup does OCSP checking of client certificates, to an internal OCSP-server.  Every once in a while, the lookup fails (as in no response from server, connection denied, or whatever), and the client is denied access (Gateway gpgw.dom

...

hklygre by L1 Bithead
  • 2557 Views
  • 0 replies
  • 0 Likes
  • 24191 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels