General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1834 Views
  • 0 replies
  • 0 Likes

Resolved! EDNS?

Has anyone implemented EDNS on their network? How does the firewall treat it? Is it just as DNS? Does it block it because the packets are too big?

Does anyone know if there is a plan to make it its own discreet application?

Thanks for the info...

Ben

EDNS0 Packet blocked

Hi,

We have internal DNS’s that send query EDNS packets and
those packets apparently are blocked by our Firewall (PA-3050 IOS Version
5.0.2)

I didn’t find any doc or discussion here about this issue

Could someone help me to allow those packets pass throug

...

BSadozai by L2 Linker
  • 7213 Views
  • 2 replies
  • 0 Likes

Strange Log/Report Request

This idea might be a little strange so I apologize if it isn't completely clear.

Currently, we get a daily PDF report from our PAs that include items like the top 5 egress interfaces, threats, etc. Our security team has been interested in these report

...

TeamSpeak 3.x not recognized by App-ID

TeamSpeak is a voice app that uses a proprietary VoIP protocol. The 3.x version of TeamSpeak was no longer recognized by its existing App-ID, so I've captured some packets and submitted it to TAC for an update. This updated app-ID is targeted for rel

...

mancelin by L2 Linker
  • 4403 Views
  • 5 replies
  • 0 Likes

How to integrate PA syslog with Algosec ?

I am struggling with Algosec regarding the ability to forward syslog data with the right format.

Traffic is hitting the Algosec server but is is not parsing any PA Traffic log data.

Because the format and content in the traffic log is customisable I wo

...

stig by L1 Bithead
  • 3972 Views
  • 3 replies
  • 0 Likes

PA incorrectly matching rule, lets C&C traffic out

One of our other IDS tools detected C&C traffic outbound.  After further investigation, this traffic was allowed out through the Palo Alto because it matched on a rule that should have allowed ONLY the App-ID "github".  The App-IDs that the PA was de

...

jambulo by L4 Transporter
  • 4846 Views
  • 3 replies
  • 0 Likes

Resolved! VPN Gateway to Gateway

We have over 100+ Gateway to Gateway VPN's to migrate to Palo Alto from an older technology.  Does anyone know of scripting to streamline the migration process?  Thanks for your time.  Jerry

Jshively1 by Not applicable
  • 3020 Views
  • 3 replies
  • 0 Likes

yeoogh.com

seeing an excessive amount of traffic being tagged Suspicious DNS query (virus.virut:yeoogh.com) canno find any reference to this anywhere, ideas?

Cisco Ironport with Palo Alto FW

We have a tenant who is going to terminate their internet service and begin to use our connection.  Their internet traffic will be directed to our Palo Alto, which is our internet gateway.  The tenant also uses a Cisco Ironport Web Security device an

...

High Management CPU

Hi

Since upgrading a PA-2050 to 5.0.8 I noticed that the management CPU is always above 70% and DataPlane is under 5%. Do this behaviour is normal? Management CPU sometimes goes to 99%.

Best regards

Gonzalo Arroyo

SOC_CSG by L4 Transporter
  • 3834 Views
  • 4 replies
  • 0 Likes
  • 24249 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels