General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Need an advice

Hello team..

I need the best or a good advice to do the correct sizing for a PAN device, yo know I don't know if there is some sizing tool that can help me, or some document to read it and understand what is the best way to do the right sizning...

than

...

Java Control on the PA

Hello

One of our client has the requirements to be able to able to monitor/control Java activity from users. I did a bit of check and found that in order to identify Java activity the following would need to be identified:

  • File extension .class
  • File ex
...

Vulnerability in Internet Explorer 8.

Hi,

Is there any date when CVE-2013-1347 will be addressed please?

CVE -CVE-2013-1347

http://technet.microsoft.com/en-us/security/advisory/2847140

There is nothing in ThreatVault yet.

Cheers,

Chris

Resolved! Do I know when some vulnerability ID update??

Hello

I know vulnerability 30844 signature when date update last.

And I know it what version is last.

I can find AV signature from threat vault page in support site.

But I don't find to check it in CLI , GUI , Threat Vault etc.

Thanks

Top NNN viruses and spywares prevalent today

Is there any way to get a summary of the top 500 or top 1000 viruses & spywares that are prevalent today? I am talking across palo alto deployments, not at a single site.

A related question is, when I do an empty search for viruses in threat vault, th

...

wissa by Not applicable
  • 1321 Views
  • 0 replies
  • 0 Likes

Dynamic Update integrity

How are the various Dynamic Updates (Applications, Threats, URL Filtering, Anti-Virus, etc.) protected against a man-in-the-middle attack?

Are they hashed or digitally signed, and does PAN-OS confirm the hash or sginature before installing them?

DavidFord by Not applicable
  • 1254 Views
  • 0 replies
  • 0 Likes

Resolved! List of available protocol decoders?

Anyone know where I can find a list of available protocol decoders in the PA's?  Is the "context" area of custom app/vuln sigs the only place where this is listed?  If so, that's not a very easy place to extract the list from.

mgentile by L2 Linker
  • 3696 Views
  • 4 replies
  • 0 Likes

Resolved! o session

Hi,

Have a installation with a PA-200 firewall.

It's a standard vwire-setup with policyes from untrust to trust. It is places between the ISPs router and another firewall.

The traffic is forwarding between the interfaces, but the PA-200 is counting 0 se

...

klumpen by L1 Bithead
  • 3119 Views
  • 5 replies
  • 0 Likes

What am I gonna do? (delete language.txt)


Hi,,,

for the first time in long time

I write question,,

since I use pan os 5.0

I am used to use upload file to scp~!

I always try to upload language custom file,,

and so There are many dirty files in paloalto

I would like to delete language file to arrange

...

Resolved! Does SSL decryption work on the Forward Proxy in tap mode?

Hello, This is Heejun from Uquest.

I'm testing SSL decryption, and read some document saying that SSL decryption won't working with Forward Proxy in tap mode.

But I heard that someone did this during previous POC. There's no way to check this right now

...

JTR by Not applicable
  • 3447 Views
  • 4 replies
  • 0 Likes

SSL Decryption Certifcate GPO Distribution

When exporting a certificate used for inbound ssl decryption which is to be deployed throughout a company through GPO to Internet Explorer, do you have to select Export Private Key or is it okay to just export the certificate?

What is the difference b

...

kalluga by L0 Member
  • 2927 Views
  • 3 replies
  • 0 Likes

Resolved! Wildcards in address objects

Instead of creating several address objects for the many MS update servers available, and then creating a group to plug into a security policy that allows my WSUS server to get updates, is there a way to use wildcards in the address objects?  MS upda

...

Dynamic DNS Support

Does anyone know if/when Palo Alto will integrate dynamic dns into its devices?  This would be a tremendous help for devices that are using DHCP from service providers.

TRCAdmin by L0 Member
  • 1961 Views
  • 1 replies
  • 0 Likes

Resolved! Email scheduler and Report names

Does anyone know if you can change the email scheduler to allow a report recurrence to run monthly?  The options in 5.0.1 allow daily but there is no option for monthly?  Also why is the reporting name restricted to 31 characters?  When creating a la

...

RSToyota by Not applicable
  • 3855 Views
  • 3 replies
  • 0 Likes

Problem with Knowledgepoint and Internet Explorer 10

Just discovered that knowledgepoint (Jive engine) do not support ie10.

I have also discovered that the reason is in Jive and is currently patched (The issue was that IE10 is being recognized as IE1, which does not pass the browser check)

My walkaround

...

stig by L1 Bithead
  • 1958 Views
  • 1 replies
  • 0 Likes
  • 24308 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels