General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Unknown Application Packet Capture

Hi

I want know about Unknown packet capture.

Q1. Where is unknown pcap stored?

[Device] > [Setup] > [Management] > [ Logging and Reporting Settings]

App Pkt Capture ?

Q2. I want know Unknown Pcap Usage.

Q3. When is capture unknown packet in PA packet flo

...

smaekawa by Not applicable
  • 3631 Views
  • 2 replies
  • 0 Likes

Resolved! Captive portal not redirecting for some users

Hi there

We've just enabled Captive Portal for all of our users but I'm getting a small number of users who are simply not being redirected to the captive portal to authenticate. I've noticed that Safari on Mac is a common theme but there are a number

...

Domain is pointed as Malware


Hello,

today we had a suspicious DNS Query  warning because we tried to reslove a domain (pandaro.be).

So Palo Alto gets information about domains and checks some information about these domeains.

My questions about this:

1/ What is PA using  to decide w

...

wolfrene by Not applicable
  • 2859 Views
  • 2 replies
  • 0 Likes

Resolved! link aggregation down

Hi,

We configured link aggregation but although switch side ports become up, on PaloAlto they are down.

Any idea ?

show interface ae1

--------------------------------------------------------------------------------

Name: ae1, ID: 48

Link status:

  Runtime l

...

panos by L6 Presenter
  • 5762 Views
  • 7 replies
  • 0 Likes

vpn issue

Hi,

After side to side vpn established correctly after sometime(I do not know how many hours) Phase1 becomes passive.Side1 cannot access Side2.

when we try to use test vpn command for ike it becomes up and it works.What can be reason for that ?

panos by L6 Presenter
  • 3133 Views
  • 7 replies
  • 0 Likes

VWire configuration testing

Hi,

At a recent PA training, the instructor mentioned a testing method for testing the configuration of VWire objects and the traffic flow, as configured in your Security Policy.  The goal of this method is the ability to do testing in a lab environme

...

Mic by Not applicable
  • 2684 Views
  • 2 replies
  • 0 Likes

App and Threat Version fail when update.

When I download and install (choose sync HA) the update App and Threat version 386-1889 (2013/07/30), Dashboard in my device show info App Version and Threat Version mismatch (view attach files). And when I commit any change, HA will not work (view a

...

Multiple ISP load balancing

We currently have an Internet setup as shown in the image below.   ISP1 is Metro Ethernet running over a disparate fiber path at 100Mbps symmetrical bandwidth.  ISP2 is ATM over 1Gb Fiber, with a disparate fiber path and 250Mbps symmetrical bandwidth

...

EdwinD by L3 Networker
  • 4320 Views
  • 2 replies
  • 0 Likes

Resolved! ACC and filtering App Category or Sub Category

I couldn't find an answer after searching for a bit, so I thought I'd ask the community.

In the ACC tab within the PANOS web UI, if I select an application in the report, within the Application Information section that appears I get links for the App

...

Resolved! No exempt profile in threat details

Dear,

We have some traffic that is getting blocked because of a strict vulnerability profile.

I want to exempt a certain IP from this profile.

But when I click on details in the threat logs, there is nothing filled in the "Exempt profiles"

Which is stran

...

mr.linus by L4 Transporter
  • 3789 Views
  • 8 replies
  • 0 Likes

Resolved! NAT for ldap

I need to configure my PAN to allow LDAP and port 636 inbound from 10 specific IP addresses for authentication with a software company. Can't figure out how to do this correctly.

jpzynski by Not applicable
  • 3332 Views
  • 3 replies
  • 0 Likes

Resolved! Spoofed IP address zone protection of vwire

Dear,

We have created a zone protection profile with protection against "Spoofed IP address".

We have put this protection profile on a vwire interface.

Question:

What will happen since a vwire interface has no IPs?

Will this "feature" be ignored, or what

...

mr.linus by L4 Transporter
  • 4505 Views
  • 6 replies
  • 0 Likes
  • 23579 Posts
  • 103 Subscriptions
Top Liked Authors
Labels