General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How to deal with certificat issues in production envirement

Hi All,

I tried to generate a self-signed certificate for tests needs and I noticed that we must add a certificate at all existings browsers on all network station, I wonder how I can remedy to this problem in production envirement, as you can see the

...

Lahcen by Not applicable
  • 3824 Views
  • 5 replies
  • 0 Likes

User-id don't read security log

I have several domain controller configurated on user identification configuration  in a Palo Alto with 5.0.8 version. Just one of them seems to function properly and if I use the command "show user server-monitor state all" I obtain this:

Server: CD0

...

JRSanch by L1 Bithead
  • 2648 Views
  • 4 replies
  • 0 Likes

How to handle email alerts

Hi Everyone,

After firing up my new Palo Alto IDS, I turned on the ability to send emails for medium, high and critical threats.  However, when hundreds of threats are detected in a short window, I get hundreds of emails.  All of them are about the sa

...

HTTP DDoS attack block signature

I need to know how to create a custom signature to block HTTP DDoS attack signature against our Web server.

The common pattern I can observe in the attack is - either (1) Automated specific URL access  or (2) URL access request with Cache-Control: no-

...

Group HA Peers are out of order in Panorama 6.0

When I select the "Group HA Peers" in Panorama 6.0, my Active firewall in the pair shows up underneath the Passive firewall in the "Managed Devices" display.  Also, the Active firewall shows up in the parenthesis instead of the Passive firewall.

Does

...

jwolach by L4 Transporter
  • 1662 Views
  • 1 replies
  • 0 Likes

Blocking WebCam Traffic

Hello All,

I'm sort of new to the Palo Alto firewall world, I had a question about blocking traffic to those adult free live cam sites, I dont want to block skype or facetime or anything simliar. All I really want to do is block specific traffic from

...

shane by Not applicable
  • 2784 Views
  • 4 replies
  • 0 Likes

allow Skype and Block Skype VoIP and file sharing

Hi

I've been asked if I can use our Palo's to allow skype messaging only and block users to make calls and send/receive files using Skype.  I already seen some discussion saying that this is not possible but i'm wondering if paloalto comes with someth

...

Lahcen by Not applicable
  • 2300 Views
  • 1 replies
  • 0 Likes

Resolved! Help setting up a rule to block all traffic at night

OK, I'm new to firewalls in general and I inherited our Palo Alto PA500 with PANOS v5. I"m trying to set up a rule that doesn't let any traffic in or out of the building from 7:00 pm to 7:00 am. Currently my boss has a rule that the last person out u

...

acole by L1 Bithead
  • 3885 Views
  • 6 replies
  • 1 Likes

Can PA block Web shell or shell script?

Hello, guys~

One of my customer want to know whether the Pan block web shell or shell script. In my opinion, there's no ips which can block those attacks 100%.

Threat prevention of the PA is signature base also, which means if it detects well-known we

...

JTR by Not applicable
  • 3446 Views
  • 1 replies
  • 0 Likes

packet size issue

Hi All,

Noticed unable to ping packet size above 996 after upgrading to PAN OS 5.

few of our internet apps(cloud) is acting intermittently

Anyone encountering the same issue?

Any advice is appreciated?

Thanks.

> ping size 995 source 172.21.194.22 host g

...

ateo by Not applicable
  • 3508 Views
  • 1 replies
  • 0 Likes

Resolved! Traffic log showing "attempted" rules

Hi,

I have a few security policies (below) and did some testing on them, and found the traffic log displaying some interesting results; I have an idea of why this shows up in the log, but may be somebody more experienced can confirm.

I have a rule that

...

MMCiobanu by L3 Networker
  • 2362 Views
  • 2 replies
  • 0 Likes
  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels