General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Wildfire Activation

I successfully actived Wildfire in my environment..however, no data is being pushed to my external syslog server (Splunk) or the online Wildfire portal.  Is there a sample file I can download to test if its working? 

rrau by L3 Networker
  • 1787 Views
  • 2 replies
  • 0 Likes

External Captive Portals

Hello I have a question about external captive portals ..

My client is migrating the firewall to Palo Alto, but he wants to keep the captive portal that is already in use in another box. My question is: How can I make users be visible and identifiabl

...

Jean by L0 Member
  • 2505 Views
  • 2 replies
  • 0 Likes

Resolved! Stop WMI-probing on User-ID Agent

Hey there,

I am glad to join this community and and excited to work with these new age firewalls.

To keep this question short and sweet, we have to PA-500's and are using GlobalProtect for VPN, and it works awesome! However, I did not set it up, but di

...

Zewwy by L3 Networker
  • 6470 Views
  • 6 replies
  • 1 Likes

SSL Decryption firewall vs web proxy?

Hi,

I see the Palo Alto firewalls can do SSL decryption inbound and outbound in order to inspect the contents for threats is there an advantage to doing this on the palo firewall as opposed to the ironport web proxy?

It looks to me like a good idea to

...

sworton by L0 Member
  • 2620 Views
  • 1 replies
  • 0 Likes

Resolved! cannot understand drop reason

hey

i have a client that connects to a remote site using  GP, and that site have s2s vpn to my site,

we have problems connecting to a server in that site, we can i cannot see and drops in the traffic or threat logs,

i have put filter on the ips and used

...

minow by L4 Transporter
  • 10806 Views
  • 11 replies
  • 1 Likes

DoS Protection - Calls to aspx

Hi,

I am wanting to create a DoS protection rule specific to http uri requests that have /*.aspx (so, the uri is at the root). I was approaching this by creating a custom application with a signature with the following:

pattern match

context: http-req-u

...

AmyTyler by L2 Linker
  • 2632 Views
  • 3 replies
  • 0 Likes

trafic shaping

Hi All,

   Please I need to prepare a document about QoS epecially about traffic shaping on PAN-500 PaloAlto firewall. so I need to know the following points:

   Is traffic shapping and QoS is configured based on porcentage or on the amount of bandwidt

...

Lahcen by Not applicable
  • 2273 Views
  • 3 replies
  • 0 Likes

Pa-2020 and number of rules

Hi,

I have PA-2020 and 160 rules. Management plane is slow in responding. Management CPU is often 98%. Commiting changes takes 10 minutes. From time to time first commit fails with error "Management server failed to send phase 1 to client websrvr". Wh

...

UMWL by L0 Member
  • 3609 Views
  • 6 replies
  • 0 Likes

PANOS 6 Syslog Different?

I'm running a PA-200, recently upgraded to PANOS6.0, and noticed I'm not receiving traffic logs to my syslog server. When on 5.x of PANOS I was receiving change configuration, traffic logs, etc to my syslog/firewall analyzer application ManageEngine

...

robg303 by Not applicable
  • 6120 Views
  • 15 replies
  • 0 Likes

NCAA Video Streaming

I work for a K12 with very limited bandwidth.  I need to determine what the appid will be for to block video for the upcoming NCAA tourney.

Does anyone know how this traffic will be classified?  --I can't block all video streaming because our teachers

...

Resolved! Portstatus on passive node.

Hi Guys,

Just a small question.

I'm going to build a small setup using a SRX-cluster with PA-200-cluster directly connected to it.

My question: Are the interfaces on the passive pa-node fysically down when not in use? ( or is this configurable? )

Why: I

...

paulmeys by L1 Bithead
  • 2314 Views
  • 3 replies
  • 0 Likes
  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels