General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 362 Views
  • 0 replies
  • 0 Likes

Resolved! Panorama policies pushed to HA peer

I've got an HA A/P pair where the primary is included in a device group and managed via Panorama.  The configs are sycnhed and everything is matched; however, the peer has no inherited policy from Panorama.  Any ideas?

emelcher by Not applicable
  • 3510 Views
  • 4 replies
  • 0 Likes

UseridID-Agent best practices - where to install ?

I'm new to this world and am looking for some advice of where to install the  UserID Agent.

I'm thinking one of the most efficient places to put it would be a domain controller.

User identification is very important to us and we want to be able to id a

...

jhickey by L3 Networker
  • 12476 Views
  • 12 replies
  • 0 Likes

Resolved! Logging of threats - Possibly to set it globally ?

Hi,

I am in the start of setting up Threat log forwarding to Syslog and/or SNMP-traps.

Do I really have to enter every single rule to enable this logging or is it a smarter way of doing this ??

I really hope that I am not forced to add the same log forw

...

stig by L1 Bithead
  • 3002 Views
  • 4 replies
  • 0 Likes

Syslog via TCP?


I note that the PA-2050 units I have running 4.1.7 PanOS generate their syslogs as UDP/514.  Is there any way to tell the unit to use TCP for syslog messages?

Our SIEM/syslog collector (AlienVault) seems to be missing some of the syslog messages we (

...

Resolved! Data pattern limitations.

Hi All,

"Save the telnet" movement inspired me . I'd like to find out if any one is experiencing same limitations I do:
- " at least 7 bytes" limit in Custom Data Patterns.

- "regex" has very limited capabilities in Custom Data Patterns.

Would adding t

...

abraun by L1 Bithead
  • 3361 Views
  • 1 replies
  • 0 Likes

Alarms - Log DB size over threshold

Hi guys,

It looks like our PA-2050 is not purging old log files from the database. When we log in to the Web UI we get alarms like this:

According to the documentation this error shouldn't occur. The PA box should automatically purge old log entries wh

...

oschuler by L4 Transporter
  • 3462 Views
  • 4 replies
  • 0 Likes

Zone to Zone for OWA/activesync?

Our users private devices are on a separate subnet/vlan and a separate PA zone using the Google DNS servers.  I have been forcing a captive portal in order to enable user ID for these devices.  This has been working fine.

I have set a rule so that the

...

BobW by L4 Transporter
  • 2464 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama: Is it possible to assign an admin role to a vsys?

In Panorama, is it possible to assign an admin role to a vsys? I don't see the option on the admin role tab in Panorama. I only see it on the device itself. Please see attached screen shots as a comparison between the Panorama view and the Device vie

...

bbsoc by L2 Linker
  • 4291 Views
  • 2 replies
  • 0 Likes

Resolved! Has anyone ever seen this on the physical interfaces.

Was working for a while the the interface decided to go down and I kept getting this warning every time I commit.  I have checked both ends and it seems to me that the 10gig interface on the palo side is bad.  Both are the same so I do not understand

...

Resolved! PA200 process running at 100%

Hi there,

I've seen a task called pan_task taking up 100% cpu on two of my PA200's. Is this a PA200 specific thing? Not seen this on any other hardware platform, looking into it further it does not look like it's actually using 100% CPU, wondering if

...

Ante by Not applicable
  • 5873 Views
  • 3 replies
  • 0 Likes

Which logs to check for firewall auto reboot?

Hello,

I need to go through the logs to check why the active PAN 2020 rebooted itself. I only have access to the cli (I have to ssh via the now active FW).

Which logs should I check?? Under mp-log there is a whole bunch of logs I am not sure which one

...

BTS_MS by L2 Linker
  • 15402 Views
  • 3 replies
  • 0 Likes

BrightCloud to BlueCoat Category mapping?

Is there a more recent Blue Coat WebFilter to BrightCloud URL Category mapping?  I found the document from Jan2011 that lists the categories and the recommended mappings at that time.  However in the last 2 years both vendors have added and removed c

...

robertb by L0 Member
  • 2071 Views
  • 1 replies
  • 0 Likes
  • 23835 Posts
  • 112 Subscriptions
Top Liked Authors
Labels