General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! In management plane there's some mysterious process.

Hi guys,

I've found out that our customers PA keeps high management cpu usage, and it seems that this process use most of the resource.

what's the 'appweb3' process and why the user is 'nobody'? Is there somebody who can explain this??

Thank you very m

...

JTR by Not applicable
  • 4548 Views
  • 4 replies
  • 0 Likes

Resolved! Paloalto Panorama Communication after license expired

We have couple of Paloalto 5050 firewall, which license got expired recently.   Is it possible to connect these firewalls with Panorama.

After device has been added in Panorama with device serial number, it is not connected and device IP details not s

...

Resolved! URL Log displays a lot of '%16%03%01/' as url for SSL traffic

What's wrong with the URL filtering and logging of the PaloAlto FW? We have many URL logs like '%16%03%01/' when users visit SSL websites.

Is URL detection for SSL websites broken?

Are there other users who have this problems?

We are not 100% sure but i

...

obor by L1 Bithead
  • 4452 Views
  • 9 replies
  • 0 Likes

DNS Response Address Translation

Can the PA's perform an address translation (assuming an appropriate NAT rule is configured) for an IP address that's presented as an answer in a DNS response message? I.E as highlighted in red below.

I have tested it and it doesn't work, if the funct

...

debsPal0 by Not applicable
  • 2230 Views
  • 3 replies
  • 0 Likes

Looking for best way for using DoS protection

Hi guys,

I have question related to  both Zone and DoS Protection features.

I'm testing with PA-200 and PA-2050 by using following DoS tool.

LOIC | Free Security & Utilities software downloads at SourceForge.net

I'm configuring this tool to generate lots

...

emr_1 by L5 Sessionator
  • 2548 Views
  • 3 replies
  • 0 Likes

manually download/install GlobalProtect Data File

Hey guys,

Is there a way to manually download/install the GlobalProtect Data File?

Though CLI maybe, like you can for content and anti-virus?

Or should you just schedule it under dynamic updates to daily, and set it to download at a time 1 minute in th

...

mr.linus by L4 Transporter
  • 2878 Views
  • 1 replies
  • 0 Likes

PanOS 5.0

i have configured syslog setting on palo alto to send log to syslog server?

i have mention the port number 601(tcp port) and server address : xx.xx.xx.xx and facility  : LOG_USER

but i cannot see the log on my syslog server which is listening on tcp th

...

Resolved! application ver 390

Hi,

We informed that 390 was released but I could not find it on dynamic updates.Any problem with that version ?

we had some ssl problem but I don't know if it is related to that or not

panos by L6 Presenter
  • 3934 Views
  • 8 replies
  • 0 Likes

Resolved! Maximum number of addresses...

I just ran into an error trying to push a config to a 5020 where I exceeded the maximum number of addresses per group for the specific model.

Where could I find these maximums?

Thanks.

hkp by Not applicable
  • 4017 Views
  • 4 replies
  • 0 Likes

Resolved! JS/Exploit.pdfka.iiq (280954)

Is anyone else seeing this Virus threat ID trigger? It appears to be a false positive, but I cannot find any description in the threat vault.

jam1 by Not applicable
  • 2615 Views
  • 3 replies
  • 0 Likes

Any defenses against slow HTTP Post DOS?

http://www.darkreading.com/vulnerability_management/security/attacks/showArticle.jhtml?articleID=228000532&cid=nl_DR_daily_2010-11-02_html

Just wondering if there is anything our PA can do to protect from this kind of exploit?

Jim

JKoss by L2 Linker
  • 3502 Views
  • 3 replies
  • 0 Likes
  • 23576 Posts
  • 103 Subscriptions
Top Liked Authors
Labels