General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Wildfire Email Link Analysis

Hello,I have a question regarding this new functionnality for PANOS 6.1.0 version.One of my customer has tested, but he doesn't get an email when a suspicious link in an email is send/received by users.So I tested on our lab, and I have the same behavior. I use the informations from WildFire Email Alerts: Subscribe or Add Additional RecipientsIt...

rled by L1 Bithead
  • 10588 Views
  • 15 replies
  • 0 Likes

email (or other?) alert for failed updates and downloads

Is there a way to configure an email (or other alert?) to be sent when updates and/or downloads fail? I want to be sure my system is kept up-to-date and the system should be able to tell me when an update check, download, or update install has failed...or succeeded for that matter.Thanks,Mike

mike_cc by Not applicable
  • 4952 Views
  • 5 replies
  • 0 Likes

Resolved! Can I sort or filter a threat report on Severity?

I have created a really useful daily report of threats but it's full of stuff I am not too worried about so would like to filter it based on the severity.I have included the threat severity in the columns displayed but it won't let me use the severity in the filtering criteria.Is there a way round this? I can't even sort from High to low.

djr by L4 Transporter
  • 5652 Views
  • 4 replies
  • 0 Likes

insufficient-data and probe-skype Problems

Hi Guys,When I'm trying to monitor the traffic via Monitor tab on Palo Alto, i can see insufficient-data under Apllication tab(usin tcp protocol) and probe-skype(using udp protocol).Who can explain me what means that two applications?I need more info about them.Thanks

How do I apply the anti-POODLE (SSLv3) threat detection to GlobalProtect?

I wanted to test detection of vulnerability 36815 on inbound traffic to the GlobalProtect portal. I'd received an email from PAN on 10/20 which suggested signature 36815 could be used to block attempted SSL 3.0 sessions including "GlobalProtect SSL VPN". I'll settle for detecting it, which should happen with the default or strict vulnerability p...

Resolved! Pa-2020 restart unexpected

HelloMy Pa-2020 restart unexpectedly with no reason aparently. I'm attaching the log so any help me is welcome.Thanks!Log:2014/10/30 11:04:56 info general general 0 Connection to Update server: updates.paloaltonetworks.com completed successfully, initiated by 192.168.48.183!----------- System Restart at 11:592014/10/30 11:59:24 info ...

Oskare_o by L0 Member
  • 9135 Views
  • 10 replies
  • 0 Likes

Global Protect Best Practices

I have deployed Global Protect with Single Sign on and have internal host detection. I have everything working and connecting fine, I have one portal and 3 gateways. What I have seen is that some internal clients are connecting to an internal gateway, either by choosing to, or by accident. I have not setup an internal gateway and now I am thi...

markk96 by L3 Networker
  • 3827 Views
  • 4 replies
  • 0 Likes

Resolved! Spamhaus Domain Block List (DBL) PANOS Integration

I recently discovered that one of my favorite real time block list providers has a new block list for domains that are found in phishing emails. PANOS has the ability to use a dynamic block list (DBL)/(EBL) external block list, but from what I have gathered there is no way to get my PA to query domains found in the Spamhaus DBL and deny traffic ...

vmChad by L1 Bithead
  • 13169 Views
  • 11 replies
  • 0 Likes

FTP session logged as 2 TCP sessions

Hello.I have a problem with the way PA handles FTP sessions. I have a general rule which allows privileged user groups to have full access to a certain network. So application and service in this rule is 'any'. One of the applications users will be using is FTP. When I look at traffic logs i see 2 TCP session for each use of FTP application. Let...

santonic by L6 Presenter
  • 13744 Views
  • 19 replies
  • 0 Likes

Filter Security Policy by Profile column?

How do I filter the Security Policy to show only those rules that have a specified profile, or no profile, assigned? We have a large, ~560 rule rulebase. I need to be able to easily find rules that have a specific profiles assigned. Scrolling through the entire rulebase rule-by-rule is more than time consuming - it easily leads to missing what y...

Resolved! 6.0.5 h3 explanation

Hi allcould someone give an example about 6.0.5 h3 asymmetric bypass.When to enable that ?how that asymmetric trafic works with 6.0.5 but not with 6.0.5-h3 ? That is the thing I'm confused about.

PanIst by L3 Networker
  • 10991 Views
  • 10 replies
  • 1 Likes

Panorama commit procedure

heydoes anyone have a document that describes "step by step" the commit procedure of the panorama?just had a quick talk with support and apparently the commits from panorama are calculating directly to the running configuration

minow by L4 Transporter
  • 9569 Views
  • 6 replies
  • 0 Likes
  • 24404 Posts
  • 123 Subscriptions
Top Solution Authors
Labels