General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

User-id don't read security log

I have several domain controller configurated on user identification configuration  in a Palo Alto with 5.0.8 version. Just one of them seems to function properly and if I use the command "show user server-monitor state all" I obtain this:

Server: CD0

...

JRSanch by L1 Bithead
  • 1899 Views
  • 4 replies
  • 0 Likes

How to handle email alerts

Hi Everyone,

After firing up my new Palo Alto IDS, I turned on the ability to send emails for medium, high and critical threats.  However, when hundreds of threats are detected in a short window, I get hundreds of emails.  All of them are about the sa

...

SSL Decryption

Why we need a certificat to implement SSL decryption, can we do SSL decryption without a certificat I really didn't understand why we should implement a certificat, for example facebook has already his certificat so wy can we detect the facebook flow

...

Lahcen by Not applicable
  • 1126 Views
  • 0 replies
  • 0 Likes

Possible problem with FQDN adresses in security policies

Helo

I have few policies that uses FQDN adresses as a sources. Today one of my friends try to conenct to serwer with putty - but he can't connect.

He used modem with dynamic IP but he used dyndns.org service and I have in policy his domain name.

I also

...

_slv_ by L4 Transporter
  • 1391 Views
  • 0 replies
  • 0 Likes

HTTP DDoS attack block signature

I need to know how to create a custom signature to block HTTP DDoS attack signature against our Web server.

The common pattern I can observe in the attack is - either (1) Automated specific URL access  or (2) URL access request with Cache-Control: no-

...

Group HA Peers are out of order in Panorama 6.0

When I select the "Group HA Peers" in Panorama 6.0, my Active firewall in the pair shows up underneath the Passive firewall in the "Managed Devices" display.  Also, the Active firewall shows up in the parenthesis instead of the Passive firewall.

Does

...

jwolach by L4 Transporter
  • 1234 Views
  • 1 replies
  • 0 Likes

Blocking WebCam Traffic

Hello All,

I'm sort of new to the Palo Alto firewall world, I had a question about blocking traffic to those adult free live cam sites, I dont want to block skype or facetime or anything simliar. All I really want to do is block specific traffic from

...

shane by Not applicable
  • 2002 Views
  • 4 replies
  • 0 Likes

Resolved! How to get subinterface counters ethernet1/2.251?

It’s easy to get snmp  counters interface.

Example: ethernet1/2

But how to get sub interface counters ?

Example: ethernet1/2.251  (vlan 251)

https://live.paloaltonetworks.com/docs/DOC-1744#comment-5123

Sacem by L1 Bithead
  • 1883 Views
  • 2 replies
  • 0 Likes

allow Skype and Block Skype VoIP and file sharing

Hi

I've been asked if I can use our Palo's to allow skype messaging only and block users to make calls and send/receive files using Skype.  I already seen some discussion saying that this is not possible but i'm wondering if paloalto comes with someth

...

Lahcen by Not applicable
  • 1765 Views
  • 1 replies
  • 0 Likes

Resolved! Help setting up a rule to block all traffic at night

OK, I'm new to firewalls in general and I inherited our Palo Alto PA500 with PANOS v5. I"m trying to set up a rule that doesn't let any traffic in or out of the building from 7:00 pm to 7:00 am. Currently my boss has a rule that the last person out u

...

acole by L1 Bithead
  • 2758 Views
  • 6 replies
  • 1 Likes