This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 244 Views
  • 0 replies
  • 0 Likes

Non logging issue

OK a little background first I'm running 4.1 on a 5050 pair in A/P.  I have a server that is trying to do 80 and 443 out to a specific address and we have some logging wierdness going on.  If we don't have a rule in place allowing the traffic it will

...

Brinkman by Not applicable
  • 8760 Views
  • 31 replies
  • 0 Likes

Resolved! OCSP service route?

Question: What service route does the PA take for his OCSP requests?

Since we can not choose anything under the service routes, I suppose it will use the management as default...

Is there any way to change this to some other interface?

Linus

mr.linus by L4 Transporter
  • 6180 Views
  • 8 replies
  • 0 Likes

connectivity issue when firewall HA failover

Did anyone encounter such issue?

We noticed that whenever the firewall triggered a failover (FW1 to FW2).

external services seem to be disrupted.

eg1 :Gomes monitoring informed of connection/performance issues (though we test from some countries to be

...

ateo by Not applicable
  • 3181 Views
  • 5 replies
  • 0 Likes

SSH2 Login Attempt - ID 31914

Name:SSH2 Login AttemptID:31914Severity:Description:This alert indicates a login attempt against the target SSH server. If there are too many login attempts, then it may means an attack is try to brute-force user name and password.

I don't know who wr

...

rroberts by Not applicable
  • 8093 Views
  • 2 replies
  • 0 Likes

Resolved! AD Policy

In Active Directory, we have a policy that requires all users to change their password every 90 days.. we have it configured to prompt within the last 15 days of expiring.. this is not happening for Global Protect users..the user gets stuck in a loop

...

rrau by L3 Networker
  • 2881 Views
  • 6 replies
  • 0 Likes

connection interrupt

Hi,

An internal application is used for databese.It's default port is 5520

when we saw this behaviour we wrote an application override rule for that tcp port and named a new application.

after that we saw issue behaviour not changed(user is disconnectet

...

panos by L6 Presenter
  • 1507 Views
  • 1 replies
  • 0 Likes

Destination NAT question

In this document is described how the NAT function at the Palo Alto.

https://live.paloaltonetworks.com/docs/DOC-1517

Has anything changed in the 5, in contrast to 4.1er?

So far, the destination NAT zone was generally on the incoming interface as the sou

...

register by L1 Bithead
  • 1847 Views
  • 2 replies
  • 0 Likes

Resolved! Revert Panos

Hi,

when we revert to 5.0.5 from 5.1.0 using maintenance mode (Panorama)

will we lost all logs ? and config ?

Thanks.

panos by L6 Presenter
  • 1985 Views
  • 2 replies
  • 0 Likes

GlobalProtect clients logged as PA MGMT

Looking through my logs today and I noticed that connections initiated by clients using GlobalProtect are being logged as sourcing from the PA management interface. Is this expected/intended behavior?  Shouldn't the log show the clients IP address?

Resolved! Data pattern

HI all

I tried to created a data pattern with a regex like in the pan 205 training course.

(Classified)|(CLASSIFIED) and this seams to be not working.

and the workaround that I found is to create in the data pattern 2 pattern

first : Classified

second :

...

Gregoux by L4 Transporter
  • 2301 Views
  • 2 replies
  • 0 Likes

Strange URL request in botnet

Hi all,

This morning, spending some time on my palo report and in botnet report there is many alert concerning repeted request to "84.39.153.31/SpamResolverNG/SpamResolverNG.dll?DoNewRequest"

Does someone know what it is ? Is it part of Microsoft emai

...

VinceM by L5 Sessionator
  • 1962 Views
  • 2 replies
  • 0 Likes
  • 23627 Posts
  • 107 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks