This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

LDAP group based rules versus Policy based URL filters

I am coming from an M86 (8E6) R3000 and Surfcontrol install to the Palo Alto URL filtering.   I have multiple AD groups in my AD that are specific to URL filtering on the M86 R3000.

I am re-using those groups on the Palo Alto to recreate my functional

...

EdwinD by L3 Networker
  • 2593 Views
  • 2 replies
  • 0 Likes

Outlook Anywhere


we recently moved to Palo Alto for our firwall needs. Is it possible to get Microsoft's Outlook Aynwhere to work with the Palo Alto firewall?

Thanks

Resolved! Threat Protection

I hope you may be able to answer a couple of quick questions for me as  i am planning on switching Threat Protection on in the next few weeks.

1.  When we turn on Threat Protection i remember you saying that the throughput for the dataplane is cut in

...

BBHLTD by Not applicable
  • 1872 Views
  • 1 replies
  • 0 Likes

Resolved! Brute Force Attemps - How many attempts exactly?

If you look in the Threat Vault you can see there are many different brute force sigs listed (ssh, rdp, postgres, smb, etc..).

My issue is the descriptions dont mention how many attempts it takes to trigger this alert? is it 5 or 50 or 5000? 5 im not

...

choff123 by L3 Networker
  • 2504 Views
  • 2 replies
  • 0 Likes

Resolved! Strange Sharepoint upload problem.

Hi,

I have a bit of a strange one hence the strange question.

I have a user who wants to upload files to a company's sharepoint website. Now as my rules stand currently they are not allowed to upload or use certain web applications.

I tried making a cus

...

Resolved! Problem installing PAN User-ID agent V 4

We currently have User ID agent 3.1.2 installed on my 2 domain controllers and I am trying to upgrade them to V 4.1.4-3. Every time I try to install it I get it failing to install. I get the errors below in the logs.

07/23/12 10:57:55:960[ Info 1775]:

...

is it possible to export firewall rule only??

Hi all.

Is it possible to export security policy with CSV, PDF or txt format?? I can’t find any export menu only for firewall rule.

If it is possible, is it able to modify that exported firewall rule??

And then is it possible to import modified firewall

...

willstech by L3 Networker
  • 8730 Views
  • 19 replies
  • 0 Likes

Lot of 'insufficient-data'

Hello,

We see a lot of 'insufficient-data' traffic on our firewall and we couldn't find any reason so far. Does anyone have a good idea on how we can troubleshoot the issue?

If we click on the insufficient-data bar we get redirected to the ACC but it d

...

oschuler by L4 Transporter
  • 6500 Views
  • 6 replies
  • 0 Likes

CNSE Anyone?

Just wondering if anyone out there has done the CNSE and can offer any advice regarding recommended reading etc?

Thanks

brownn by L0 Member
  • 10726 Views
  • 27 replies
  • 1 Likes

DMZ Setup

I'm in a position where I need to move a device that is currently inside my network to a DMZ on my Palo 2050. Which puts me in a position where I need to create a DMZ on my Palo. Does PA have a good document for creating a DMZ? I haven't been able to

...

interface failover on PA500

Since link aggregation (LACP or etherchannel) is only supported on PA4000++ I want to build a simple interface-failover / interface-group setup (like any other enterprise firewall allows even on low-end devices).

group

To do this I would do the followi

...

ctr_ts by L1 Bithead
  • 3196 Views
  • 1 replies
  • 0 Likes

Resolved! Does WildFire work in "Tap" mode?

We have had WildFire turned on for almost a week.  In the Data Filtering logs, it has "forwarded" numerous "PE" files and only 1 "PE" file was logged as "wildfire-upload-success".  That 1 file happened to be coming through the interfaces that are set

...

jambulo by L4 Transporter
  • 4375 Views
  • 3 replies
  • 0 Likes

ssl-vpn and IPsec tunnel Palo Alto with Check Point

Hello all,

I'm hoping that somebody may be able to answer a few questions I have about the configuration of Palo Alto firewalls please?

I want to set up two differents VPN, one ssl-vpn and one IPsec, i do this because i want to conect to my firewall fr

...

is it possible to add a CA in PA device?

Hello there.

I have a question related to CA for SSL client.

Customer has a certificate which issued by Trusted Root CA, but this trusted root CA is not contained in an ssl client's browser.

And then, the customer certificate was issued by this CA.

So,

...

willstech by L3 Networker
  • 2606 Views
  • 4 replies
  • 0 Likes
  • 23718 Posts
  • 104 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks