General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

PA service account causing huge root DNS traffic?

Basically, the traffic monitor is showing DNS traffic going from my DNS server in the trusted zone to the external root DNS (our ISP) in the untrusted zone, and user is the PA's own domain account.

All of it's coming from a domain controller that also

...

Maxstr by L3 Networker
  • 4967 Views
  • 7 replies
  • 1 Likes

Why does User-ID suddenly stops ?

Hello,

We have a customer who is using PA-3020 in L3 A/P cluster, running PanOS 5.0.2.

We have set up User-ID with PanAgent services (Primary and Secondary) installed on two different servers members of the domain.

User-ID is configured to be based on :

...

ldormond by L3 Networker
  • 2959 Views
  • 2 replies
  • 0 Likes

Resolved! Rate limiting egress on perimeter install

I have a client where I would like to rate limit egress traffic from an internal source IP. This source IP tends to be a major bandwidth hog. I currently have no QOS profiles setup but I do see the option to limit egress I believe.

Are QOS profiles th

...

SDorsey by L4 Transporter
  • 1799 Views
  • 1 replies
  • 0 Likes

Resolved! Can I create a custom file type?

As per the subject, is this possible to do?

We'd like to have specific types of files logged when it enters or leaves our network but since there is no such file type on the system, it isn't being logged.

Thanks

eugenep by L3 Networker
  • 4132 Views
  • 6 replies
  • 0 Likes

Cannot set new certificate to portal

Hello all,

Because of a domain name change, I created a new CA certificate on the PA500 which is our portal. I set this certificate as server certificate in the Portal settings. I committed, restarted the web-server and sslvpn processes.

But the new po

...

bsanders by L2 Linker
  • 2833 Views
  • 4 replies
  • 0 Likes

Vulnerability Protection - Host Type field

I am looking for clarification as to how the 'Host Type' field works in a vulnerability protection profile.

For instance, we have a profile configured to protect our DMZ with six rules as follows:

RuleThreat NameCVEHost TypeSeverityActionclient-critica...

MikeBull by L0 Member
  • 3466 Views
  • 1 replies
  • 0 Likes

Resolved! No new traffic logs

I have a problem that my PA 2020 firewall is not generating any new logs. I was on a remote session with an engineer yesterday for something unrelated and in the course of that call the logs stopped generating. It wasn't until today that I went and c

...

JRussell by L3 Networker
  • 2347 Views
  • 2 replies
  • 0 Likes

Resolved! forwarding with pbf No Nat

Hi,

We wanted to forward the traffic coming on public interface (1.1.1.1) with port 80 to an another ip address on another interface (DMZ - 2.2.2.2)

just to forward, not want to NAT,

we've written a Pbf untrust to 1.1.1.1 with destination port 80 forwar

...

panos by L6 Presenter
  • 3958 Views
  • 6 replies
  • 0 Likes

Resolved! Custom search in ACC

Hi,

Is it somehow possible to use "custom" filters in the ACC?

I like the drill-down features in the Application Command Center(ACC), but what I'm trying to do is to drill-down on specific applications that do not appear in the "top 25".

Currently I hav

...

Natti by L1 Bithead
  • 3516 Views
  • 3 replies
  • 0 Likes

MIBS for SSL VPN

Does Palo Alto have any documentation on MIBS for SSL. If so could someone point me in the right direction.

Resolved! Web Management DOWN?

Hi,

We are trying to look at the ACC tab, but we receive  "No Matching Records" in all te categories:

I tried to restart the web-management, but I received this error:

admin@PA> debug software restart management-server

Process 'mgmtsrvr' executing RESTA

...

ecardona by L1 Bithead
  • 2737 Views
  • 3 replies
  • 0 Likes
  • 23591 Posts
  • 103 Subscriptions
Top Solution Authors
Top Liked Authors
Labels