This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

File Blocking Block ZIP and Allow DOCX Extension

Hello,I need to block files with zip extension. (action Block)Also allow files with extension: doc, docx, xls, xlsx and pdf. (action ¿? ¿?)What "action" can I use? or How can I create an exception?The other extensions should ask me confirmation. (action Continue)Is there any way to do this?Regards,DiegoMensaje editado por: Cos seg

SOC_CSG by L4 Transporter
  • 3548 Views
  • 1 replies
  • 0 Likes

CVE-2015-0235 Ghost

Just starting a thread for CVE-2015-0235. GhostAnybody see any news from PA on this? I have not.Cheers

choff123 by L3 Networker
  • 12290 Views
  • 11 replies
  • 0 Likes

tcpdump like packet capture on PA

how can check dhcp packet on PA , for example using tcpdump -i Internal port 67 we see on unix/linux boxes.how can we check same dhcp request and response packet on PA .

Blocking Teamviewer.

I am testing the ability to block teamviewer on my network. I have a rule that should block the application. In the traffic monitor, I can see the denies for "Teamviewer-base", but it does not prevent the application for being "ready to connect", nor does it prevent me from connecting to this PC remotely. Any ideas or thoughts?

No URL-Log of HTTP/1.1 204 No Content

Hi,The PA seems not to output a URL log when HTTP response code "HTTP/1.1 204 No Content".On the traffic logs, the PA could classified the category of HTTP.But there is no log related with the same Session ID.According to the pcaps on the client PC,the browser requested HTTP GET, but the server replied "HTTP/1.1 204".You can see the same issue o...

komure by Not applicable
  • 3381 Views
  • 2 replies
  • 0 Likes

Issues with Content Update 483-2549

FYI - Having major issues with last night's content update. Inspection of traffic from our client environment to our domain controllers is causing significant logon/logoff delays. I changed from an app rule to a traditional port/service rule (as app updates have broken things in my environment often) and that made no difference. I reverted to...

Resolved! ThreatID references, or lack thereof

I frequently come across threat notifications where the info in the Threat DB is so sparse as to make the notification useless.Take for example my threatid du jour, 13742."This signature detects NUCLEAR.Gen Command and Control Traffic."That's it. Try googling around to see what this is all about.How do you go about filling in the missing blanks ...

MCmgt by L2 Linker
  • 3455 Views
  • 2 replies
  • 0 Likes

Managing Multiple Globalprotect Profiles

Any advice for managing multiple GlobalProtect connection profiles? My colleagues and I connect to several different sites and haven't found a great way to track the client info for each site outside of a spreadsheet or password manager.

Resolved! Configuring User-ID agent for e-Directory

Hi Guys,All this one year, I have configuring the User-ID agent for ADs but never encountered a situation where the User-ID agent has to be configured for e-Directory. I am pretty much sure that it would be straight forward and similiar to configuring it on the AD and the agent has a seperate section for e-Directory; but it would great if any o...

6.0.x - Stable?

We're on 5.0.15. Can't say it does anything wrong but there's always a point at which you feel compelled to upgrade.My rule of thumb has always been wait until the .07 release of any new PAN-OS - seems to be about when they're considered stable.So would anyone expect any significant issues moving from 5.0.15 to 6.0.8?My main interest is DNS Sin...

  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks