General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 279 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3159 Views
  • 2 replies
  • 14 Likes

Resolved! Blocking lists of IPs

I'd like to block a list of IP addresses based on the ZeuS IP Blocklist.  What is the best/preferred method for doing this on the Palo Alto?  Thanks

sconley by Not applicable
  • 5065 Views
  • 5 replies
  • 1 Likes

Resolved! about control softether

Hi All,

We would like to control softether with PA5020 which runs PanOS 4.1.10, but we can not find keyword "softether" in the applications.

Anyone knows how to control softether in the PA fw?

Thanks.

Regards,

Joy

Resolved! Manually trigger a logevent for a threat or a rule?

There is a test-command one can use in the CLI to identify which security policy a specific packet will hit.

But is there also a command to issue a log-event?

For example when you are about to manually configure triggers in your logserver to react on -

...

mikand by L6 Presenter
  • 1782 Views
  • 2 replies
  • 0 Likes

Resolved! Need help with BGP in Active/Active HA

We have a pair of 5520's in Active/Active mode at a colocation facility.  The colocation facility is handing off to us 2 separate LC fiber connections, each has it's own public /30 address but utilize the same AS number for our BGP.  We have a /24 fr

...

Commit failure 4.1.10

After my Palo Alto 2050 in HA active/passive is up for about 1 week, I begin to get errors committing policies.

Management server failed to send phase 1 abourt to client logrcvr

Management server failed to send phase 1 abourt to client sslvpn

Management

...

EdwinD by L3 Networker
  • 4270 Views
  • 8 replies
  • 0 Likes

Resolved! The hunt is on - 0day for java 1.7u10

How many hours/days will it take for:

1) Wildfire customers

2) Regular customers

to get protected by a threat-db update regarding the latest 0day exploit for java 1.7u10 (and possible java 1.6u38) as descibed in:

Malware don't need Coffee: 0 day 1.7u10 s

...

mikand by L6 Presenter
  • 5579 Views
  • 14 replies
  • 2 Likes

Resolved! Upgrade Palo Alto version

Hi,

I have 2 problems:

1) I refresh the Software in my Palo Alto and i cant see the new versions 5.x. The last version that i can dowload is 4.1.11. Why i can refresh the new releases????? I attached a screenshot with the error and the succesfull conne

...

Resolved! Problem LDAP

Hi I have a problem with my firewall palo alto. I hope you can help me

I had configured an LDAP server (Active Directory) in my Palo Alto. Also I had created two Atuhentication profile. One for VPN access and another for the administration of Palo Alt

...

QoS

Hi,

Please help me out with the below issue and relevant links to configure QoS also will be helpful.

I have configured QoS Profile for class 8 traffic. and QoS Policy .. and then assigned the QoS Policy to an physical interface.

I have initiated some c

...

HA and stateless connections...

Ok, I have what may be a newbie type question, but it is one that I wanted to ask.

In the PA 201 class, they teach for HA, that stateless connections are not synched.

What is considered a stateless connection?  I do not think it would be UDP traffic (a

...

scantwell by L4 Transporter
  • 2403 Views
  • 4 replies
  • 0 Likes

Resolved! Global Protect portal authentication with LDAP fails

We have set up GP to authenticate against an AD server . User group mapping has done and u can pull the users . However, whenever you try to connect with one of the  users from the GP client or portal web page ,  you get authentication  fails message

...

usvi by L3 Networker
  • 3430 Views
  • 9 replies
  • 0 Likes

Resolved! vwire policies

HI all,

when we deploy the paloalto firewall in vwire mode and we have multiple zones (system zone, application zone, bdd zone), can we create rules to permit traffic between these zones through pan firewall ??

thank's in advance

atelcom by L3 Networker
  • 3972 Views
  • 4 replies
  • 0 Likes

Palo alto starter questions

Hi,


Iam a starter for paloalto .. I have few questions so any answers on this will be help full...


  1. What is dynamic block lists and how can we use that?
  2. What is disable server response inspection in a security policy?
  3. how to add virus exceptions based on
...

  • 24090 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels