General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 409 Views
  • 0 replies
  • 2 Likes

Are DMZs still necessary?

We are running a PA-500.  Given it's abilities I am wondering if a DMZ is absolutely necessary.  Note:  I realize this is a wide open question, what servers are we using, what operating system, etc.  I am curious in more of a "general" sense.

There ar

...

BobW by L4 Transporter
  • 5351 Views
  • 5 replies
  • 0 Likes

Resolved! Problem setting up a U-Turn NAT rule

Hi all,

While trying to setup LSVPN on our HQ Palo Alto device, we ran into a U-Turn NAT issue. Let me first explain the setup:

We setup an OCSP responder using a loopback Interface on the PA firewall. The private IP address of that loopback interface

...

oschuler by L4 Transporter
  • 5860 Views
  • 7 replies
  • 0 Likes

Decryption rule blocking traffic silently

I am running PanOS 6.0.3. I have a decryption rule that perfectly works most of the time. However I realized that in some specific situation it silently blocks the traffic. As I am quite new on Palo Alto, I do not know if I am misunderstanding someth

...

PPPoE in A/P configuration

Hi,

Just checking this will work:

users---[switch]---[a/p ha pa500's]---[switch]---ntu

So the service provider requires a PPPoE client to use the link.  The SP only allows one port on the NTU to be used and only supports a single PPPoE session.

Can the P

...

IKE 500

Here is some traffic being sent from my DMZ to the internet and I am trying to determine whats happening. How would the community read this information

Session          192980

        c2s flow:
                source:      172.17.1.5 [DR-DMZ]
           

...

infotech by L4 Transporter
  • 11958 Views
  • 32 replies
  • 0 Likes

Resolved! Custom URL Block Page

Hello Techies,

I am in process to implement custom URL block page in addition to default block page. In need to add below additional things in my custom URL block page

1. my company logo : Looking assistance to achieve

2. whenever there is block URL mes

...

Resolved! Issue Setting Up a Policy for Plex

Ok so we are testing a way to transcode some videos to distribute to remote users and Plex is working well internally.  I am now trying to set this up so that we can use externally as well.  Here is what I have done.

1)  Created the Object Address for

...

URL Filtering Log show Action block-url

my palo alto I see url-filtering log


---in columns action show block-url

---in columns rule not show

and I don't add url-filtering profile to all security rule

why url-filtering show action block-url

help me pls.

PA5020 PanOS5.0.12

PAN-DB

BaNk by L1 Bithead
  • 6829 Views
  • 3 replies
  • 0 Likes

Default threat ID correlation for action

Hi all,

I was searching for a while and could not find the answer to this question.

By default, does a Palo Alto block every instance a threat ID (that is enabled) is seen or does it wait until 1 threat ID hits 5 times in 1 minute (for example).

I would

...

Xbox Live with dynamic public IP

I know that this topic has been discussed before, but I cannot seem to find an exact scenario match since I am dealing with a dynamic public IP address.

Interfaces

ethernet1/1

  • Primary internal network
  • Default virtual router
  • 172.16.50.1/24
  • Zone: Internal

eth

...

swoods79 by L1 Bithead
  • 5045 Views
  • 7 replies
  • 0 Likes

forward connectivity

Hi friends,



How to forward connectivity  when our VPN connectivity down or leasedline down.

Regards

Satish

Satish by L4 Transporter
  • 1472 Views
  • 1 replies
  • 0 Likes

Resolved! CryptoWall??

I did a search for this... came up w/nada.

Has there been any convo about CryptoWall?  Has PA addressed it?

thanks

//moe

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels