General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14562 Views
  • 1 replies
  • 4 Likes

Resolved! No logs in wildfire log section on device- PAN OS 5.0.3

Hi ,

Even we have the valid wildfire subscription, not able to see any logs in wildfire logs in device but in the data-filtering logs for some exe files it is showing wildfire-upload-success         ( means file has uploaded to wildfire cloud for anal

...

Gururaj by L4 Transporter
  • 1911 Views
  • 3 replies
  • 0 Likes

Resolved! VPN user cannot access another network segment

Hi All

I just established a VPN between two sites. the user over the site has no issue contacting my LAN IP segment (172.20.4.X) and but they just couldnt access to another of my LAN IP segment (172.20.6.x)

I have check under the virtual router that se

...

RIS by Not applicable
  • 1151 Views
  • 3 replies
  • 0 Likes

DNS Amplification Attack

http://dnsamplificationattacks.blogspot.com.es/

http://dnsamplificationattacks.blogspot.nl/2013/05/nl-188954825-as57172.html,

In relation to this attack, which is performed a high volume of requests against the DNS, it detects PaloAlto under the signa

...

noc_soc by L0 Member
  • 1871 Views
  • 2 replies
  • 0 Likes

Can PAN detect this kind of malware?

I found following article.

Sucuri Research

This is pretty interesting technique, though if people hits this kind of malware, is Threat Prevention (or might be wildfire?) able to detect this malware?

Regards,

emr_1 by L5 Sessionator
  • 765 Views
  • 1 replies
  • 0 Likes

Netflow Best Practice - Settings

What is the best practice for Netflow settings?  I  am sending the data to Paessler PRTG, but am skeptical that it is reporting correctly.

I currently have it set to the default settings:

Minutes: 30

Packets: 20

Active Timeout: 5

Would changing any of the

...

pamac by L0 Member
  • 1552 Views
  • 0 replies
  • 0 Likes

Resolved! UID Agent Service Route Configuration

I managed to get User-ID tagging enabled and working on our PA-200 lab box.  My question has to do with the source & destination configuration for the service routes.  The PA box is identifying traffic from 192.168.10 and 192.168.11.x /24 networks th

...

mahrendt by Not applicable
  • 1140 Views
  • 2 replies
  • 0 Likes

Bradford Network Sentry (NAC) User-ID Integration

Does anyone have experience integrating Bradford Network Sentry with Palo Alto User-ID?  According to everything I have read it is possible and could not be any simpler based on the integration guide from Bradford (attached).  The problem we run into

...

pamac by L0 Member
  • 1641 Views
  • 0 replies
  • 0 Likes

Resolved! Logs Retention

Hello Guys,

Just have few questions, is it possible to clear a specific set of logs? e.g. I want to clear the logs from January to March only and retain the logs from April onward. I asked this because some clients do not want to lose all the logs for

...

Resolved! No entries in Wildfire logs - PanOS 5.0

I'm not getting any log entries under the WildFire log page i 5.0. In the data filtering logs I have entries with both "wildfire-upload-success" and "wildfire-upload-skip". I was expecting to see these entries in the Wildfire log page as well. What i

...

torm by L4 Transporter
  • 1497 Views
  • 3 replies
  • 0 Likes

Long commit time with 125 vsys

Hello,

Running 5.0 code train, after we created 125 vsys on the PAN 5060 firewall and preloaded our standard panorama shared policies and address objects (3 pre polices, 1 post policy, and about 100 address objects).  The firewall commit time is about

...

Cacti 5.0

Has anyone seen any issues with cacti and 5.0? Ours where all logging usage perfectly until the upgrade it which point they stopped. Now we just get SNMP errors as though the devices are down.

Regards

Dave

DaveM by L1 Bithead
  • 1560 Views
  • 4 replies
  • 0 Likes

paloalto-panorama App-ID missing?

Does anyone else find it strange that there's no 'paloalto-panorama' App-ID? There are paloalto-updates, paloalto-userid-agent and paloalto-wildfire-cloud App-IDs, but not one specifically for Panorama? (ssl on port 3978 essentially)

FQDN not resolved

Hi

On a Palo Alto Firewall, we created an address object using FQDN Type.

We use this object as a destination address in the security rule « TEST-FQDN-1 »

But checking the security policy (show running security-policy) we can see the destination is not

...

Hub by L0 Member
  • 4475 Views
  • 9 replies
  • 0 Likes
Top Liked Authors