General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 1944 Views
  • 1 replies
  • 11 Likes

Resolved! Unable to install Applications / Threats 360-1705

Hi all,

Is anybody else having problems installing Applications / Threats definitions 360-1705 please?

One half of my HA pair of PA-2020s has installed this OK but the other has not.  The install and push completes OK but the active version remains at

...

DavePalo by L4 Transporter
  • 2630 Views
  • 4 replies
  • 0 Likes

Resolved! Mega service

Is programmed a content update during next week for the new application mega (mega.co.nz)?

Right now the service is recognized as ssl, web-browing and unknown-tcp and becomes urget its new calssification due to the high bandwidth consumption and down

...

NGS_SOC by L3 Networker
  • 2863 Views
  • 6 replies
  • 0 Likes

What to do with Large Logfiles

I have two PA4060s and Panorama on our internet border.  I need to retain logs of all outbound traffic for at least three months.  After watching the log retention on Panorama for a couple of weeks and running the debug log-receiver statistics comman

...

djr by L4 Transporter
  • 2313 Views
  • 4 replies
  • 0 Likes

Resolved! Panorama Logging Backfill

I have had to upgrade both my firewalls and Panorama from 4.1.9 to 4.1.10 about a week ago. I updated the firewalls and subsequently cleared the logs for them, however, I failed to do that with the Panorama. Yesterday, I realized this important misse

...

dhill6 by L1 Bithead
  • 1770 Views
  • 1 replies
  • 0 Likes

Resolved! All user activity for last 30 days

Hello,

I've done some searching and also have engaged support but I believe I've hit another black mark for our PA.  Has anyone figured out a way to get all user activity for a certain frame exported?

I need simply:

user

Date/time

site visited (full url,

...

mlaporte by L1 Bithead
  • 2232 Views
  • 2 replies
  • 0 Likes

Resolved! Creating Custom Applications

Greetings,

Am I missing something, when creating a custom application why can't I create my own custom category and subcategory?  Also, I'm surprised PAN doesn't detect intouch (wonderware) as an application?

thx,

Bill

Wildfire Depth

The first question I have is how many layers will the file blocking inspect? For example, a zip in a zip has an exe that is malicious. If the PA doesn't inspect that far down wouldn't I be able to get through the firewall inspection?

If the above is t

...

das by Not applicable
  • 2248 Views
  • 2 replies
  • 0 Likes

Issues getting ip-user mapping with probing error

Hello,

I've got UI agent 4.1.6 configured on PanOS 4.1.9.

We have around 3000 users and in agent we see only around 700 user-mapping count.

in the logs we get the below error for a lot of IPs and i guess that's why we dont get all users. I've tried to d

...

vinesh by L2 Linker
  • 4042 Views
  • 3 replies
  • 0 Likes

miniduke

I got the question from de security dept, to investigate miniduke.

This was is detected by kaspersky labs, as an exploit of an Adobe flaw CVE-2013-6040

I dont' find anything on PaloAlto about miniduke , or CVE-2013-6040

LucVdb by Not applicable
  • 1358 Views
  • 1 replies
  • 0 Likes

Report on attempts to access unsuitable content

Hi All

I have been tasked with creating a report that shows if a user has attempted to access or find a way of accessing unsuitable content.

While I can obviously run a report on pages that have been blocked by the filtering system we want to see any

...

Resolved! Eicar and Palo Alto threat-db

First a question:

Where and how can I see what is the default action for a particular threat, vuln or spyware threatid?

Preferly from within the box itself...

And now for an observation:

I tried searching for eicar in the threat vault and obviously there

...

mikand by L6 Presenter
  • 2902 Views
  • 4 replies
  • 0 Likes

Resolved! Getting an application definition modified?

Folks.

I have run into an issue with the way a specific application passes the firewall, and I need to put in a request to Palo Alto to have it modified.

The application is Subversion, and when I set the firewall to allow only "application default" ser

...

darren_g by L4 Transporter
  • 3189 Views
  • 5 replies
  • 0 Likes

URL Filtering - Continue Action on Terminal Server

Hi,

I have a customer who has deployed a PA-2020 with 3 Terminal Server agents at this seems to be operating well with one exception.

They have configured a URL filtering policy that has a Continue action on a number of categories.

When a standard LAN u

...

Top Liked Authors