General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1693 Views
  • 0 replies
  • 0 Likes

Wrong SNMP Values after Upgrading to 6.0.2

Hi,

after Upgrading from 5.0.7 to 6.0.2 I got wrong values for active sessions information in my monitoring tool. The device it selfs shows a much lower value then my SNMP-network Monitoring tool.

E:G.         

on the device:

At the same time via SNMP

...

CVE-2014-0198 - Anyone have a signature?

Curious if anyone else is working on or looking for a signature for this vuln: NVD - Detail

DoS vulnerability brought about by a bug in OpenSSL. Is PAN working on a signature by chance?

Details: The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x thr

...

Cap by L0 Member
  • 2585 Views
  • 1 replies
  • 0 Likes

Resolved! Active/Active HA3 Link Bandwith

Looking for advice on bandwidth for a A/A pair of 5050s running a 10G vwire. Should I burn another 10G port on the HA3 link or can I get away with 3 to 5G agg? Or is this really just one of those things I need to set up and monitor?

AlexZu by L1 Bithead
  • 5554 Views
  • 4 replies
  • 0 Likes

Monitoring Attacks in real time

Hi,

I'm wondering if there is another way instead monitor tab to monitor attacks in real time.

Does anyone else thinking about it?

Leonardo Dias

ldias by L0 Member
  • 4018 Views
  • 6 replies
  • 1 Likes

SSL Decryption and Cisco Jabber client

We currently use Cisco Webex for desktop sharing, video conferencing and IM. Our environment has mostly people using the old Webex connect client and a few 'pilot' users of the Cisco Jabber client.

Recently we implemented SSL Decryption and everything

...

Proxy ID's question

Can someone clarify Proxy ID's for me? From what I see they're the same thing as encryption domains? What is the syntax, does it have to be one to one: ie SIP 1.1.1.1 DIP 2.2.2.2

                                                                        

...

dvlacic by Not applicable
  • 4184 Views
  • 2 replies
  • 0 Likes

Bulk Apply Profiles

Hi All,


Is there any way to easily bulk-apply a threat prevention profile to a large list of Security Policies?  Maybe through the CLI?  We have about 600 security policies that do not have threat prevention turned on.  I'd like to do so, and have the

...

wocomike by L1 Bithead
  • 3480 Views
  • 4 replies
  • 0 Likes

Problem with incomplete application

Hi all,

I have the same problem with incomplete application.

!Public zone! <====> PAN Firewall <====> INSIDE Firewall <-----> Server IP.

I have nated Server IP to Public ip, and configure rule like the below.

Name: (Ping) ; Src zone: (public); Src: (any)

...

Resolved! How many to need for HA3 links?

Hello,

I'm going to install two PA-3050s with A-A deployment.

Based on datasheet, throughput of only app-id is 4Gbps.

How many to need for HA3 links? four links? more?

I wonder how to calculate for it.

Do you have recommendation?

Please let me know it.


Than

...

Resolved! DPD check

Hello,

Is there any CLI commands to check if Dead Peer Detection (DPD) is receiving/sending keepalive packets to the remote VPN peer ??

Regards,

HA

licenselu by L4 Transporter
  • 3291 Views
  • 2 replies
  • 0 Likes

Threats blocked by Wildfire.

How do you distinguish when a threat is being denied or blocked because of Wildfire, versus the standard antivirus definitions in the PA firewall?

Netwerx by L2 Linker
  • 1999 Views
  • 1 replies
  • 0 Likes
  • 24216 Posts
  • 117 Subscriptions
Top Liked Authors
Labels