This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 709 Views
  • 0 replies
  • 0 Likes

Threats alert

Hello Team,

I have configured the panorama threat alert for one of our firewall and its working fine. Alerts has been configured for High and Critical .

we are getting so many alert from one IP (10.32.100.238) , one of vulnerabilities management device

...

tiwara by L3 Networker
  • 2558 Views
  • 2 replies
  • 0 Likes

EU - European Union

Is it possible to view the countries that are included in the "EU" object? When new countries are added to the EU, will this object be updated via dynamic updates or by upgrading?

Does anyone have experience with the accuracy of geo ip on palo alto?

Ki

...

bdeschut by L4 Transporter
  • 3761 Views
  • 2 replies
  • 0 Likes

Intermittent SSL decryption issues for some, not all.

My Palo Alto Firewall 2050 running 4.1.16.   I am having a lot of intermittent SSL decryption issues.  I'm not sure what to do with some of these.   An example is https://app.plangrid.com.    

I can this site when I have made this change and restart

...

EdwinD by L3 Networker
  • 4001 Views
  • 2 replies
  • 0 Likes

Resolved! ftp export log

Anyone know how to translate this show CLI command into the ftp export equivalent?

> show log traffic src in 10.0.0.0

> ftp export log traffic ?? (assuming query would work)

I would prefer not to export all logs only need a subset.

Thanks,

Monica

MLaden by Not applicable
  • 2927 Views
  • 2 replies
  • 0 Likes

Resolved! About a session generated by override rule

Hi guys,

A session generated by override rule that can be applied rematch session after commit configuration successfully? Or not? I guess that rematch session would not impact to session generated by application override rule.

Please let me know above

...

Resolved! Apply policy on a vwire interface in passtrough mode

I want to apply a policy on my vwire interface but i have this error:

Operation Commit
Result Failed

DetailsIn VSYS vsys1 from zone VW-MPLS-Trust of type vwire and to zone UNTRUST of type layer3 are incompatible in security rule Application bloc

...

dsevigny by Not applicable
  • 2550 Views
  • 2 replies
  • 0 Likes

Disable Inspection for Sip ?

In the ASA you can disable SIP Policy Inspection. In the Junipers I think you disable the ALG. How do I do this in the Palo Alto ?

Firewalls often try to apply rules around the way protocols work which can cause them to break. I dont want SIP to be in

...

jhickey by L3 Networker
  • 10211 Views
  • 6 replies
  • 0 Likes

Good Technology Issue

Currently, we are experiencing an issue with a product called Good Dynamics version 1.4.31.5.  The vendor "Good Technology" is stating that the Palo Alto firewalls are causing an issue with some sort of SSL heartbeat connection.  Is there an know iss

...

Westar by L0 Member
  • 1617 Views
  • 1 replies
  • 0 Likes

machine authentication

hello!

we have a need to identify user machines associated with a domain. specifically, we want to create security policies based upon domain membership. is that even possible, and how would we achieve this functionality?

thnx!

Resolved! SSL Decryption Whitelisting

So, I have just implemented SSL Decryption in our environment and we hit a website that appears to not work properly because of it. (It's sap.com, click on the login link in the upper right.) We don't see any errors in the firewall but the login prom

...

Eval question

Given a flow and properly written policy to allow Facebook and its myriad apps/widgets on port 80/443, other than the admin management overhead (i.e., having to open ports 80 and 443), how is what Palo Alto does different from what Checkpoint does?

Th

...

derasa by L0 Member
  • 1793 Views
  • 1 replies
  • 0 Likes
  • 23972 Posts
  • 114 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks