General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 418 Views
  • 0 replies
  • 2 Likes

Resolved! Replacement of PA Management Certificate

I asked this in a recent class (201/205) but the instructor wasn't sure of the answer so here goes: Can the management certificate be replaced? We use a private CA for internal sites, as well as public certs for some devices.

Thanks.

joehansen by Not applicable
  • 2223 Views
  • 2 replies
  • 0 Likes

Resolved! ssl decryption with upstream proxy

We have a squid server behind our pa fw like this:

Client <-> PA FW <-> Squid Proxy <-> ASA FW <-> Internet

Decryption of site https://addons.mozilla.org adds the IP address of our squid proxy to the exclude-cache list and all following ssl connection

...

azwicker by L1 Bithead
  • 5929 Views
  • 7 replies
  • 0 Likes

Resolved! Custom App Cloning

Last question for today (but thanks for the previous responses - you all are very patient with the newbies): Is it possible to copy application definitions in order to make a custom one? I was looking for a clone app process that would save time for

...

joehansen by Not applicable
  • 2611 Views
  • 2 replies
  • 0 Likes

About schedule reports error messages

Hi All,

We run a PA-500 with PanOS 4.0.8 and setup a schedule report profile to sendout daily custom reports. However sometimes it works and sometimes doesn't.

I would lke to  find out something wrongs, and see many error messages in the mailclient.log

...

Resolved! About ftp passive mode App-ID insufficient-data

Hi All,

We find that if ftp runs passive mode and go through paloalto fw, in the fw monitor -> logs -> traffic, we'll see the application should be identified as insufficient-data.

I also find that there are just few bytes for every logs in the Bytes c

...

Resolved! Live site nav question

Newbie here wanting to know where to report site issues. I tried clicking on the info center link from the home page and got a navigation error. Thanks.

joehansen by Not applicable
  • 2210 Views
  • 3 replies
  • 0 Likes

Resolved! Exporting traffic logs via CLI - scp

Is there a way to group by source or destination address from the cli. for example:

scp export log traffic query "(port eq 514) and ( proto eq tcp ) and ( app eq insufficient-data ) or (app eq unknown-tcp)" start-time equal 2013/03/18@01:00:00 end-tim

...

opiedrah by L0 Member
  • 8766 Views
  • 5 replies
  • 1 Likes

Resolved! Top Destination List

Hi all,

From ACC when we look to Top destination and sort by byte we saw 2 abnormal value.What may this be ?

panos by L6 Presenter
  • 1537 Views
  • 1 replies
  • 0 Likes

Resolved! 5.0.1.h1

what does this fix with 5.0.1, i noticed that it is not available for general download.

Destination user

Why does “Destination user”  is coming up on my traffic logs? There is no description, Tab or filed on the policy rule where I can add.

wesa by Not applicable
  • 3203 Views
  • 2 replies
  • 0 Likes

Resolved! SSL VPN with Client Certificate

Hello

I want to use SSL VPN with Client Certificate.

I will install CA server on MS Window 2008.

I know CA server is installed 'Enterprise CA mode" or "Standalone CA mode".

The Enterprise mode deliver Certificate to assist AD server.

The Standalone mode d

...

Resolved! Problem Blockin Linkedin - What is the best practice ?

Dears,

I am stuck with this problem since the lasts 2 weeks...

We have a default rule in our company blocking any social networking, but for some HR users, linkedin should be allowed.

I am trying to make a rule to allow some users to access only the lin

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels