General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

USER - ID FOR EXCHANGE SERVER

Hi Guys ,


I see on PAN OS 4.1 releases , We can discover user from Exchange Server.

So where we have a document to understand more better how it works ?

Where can i do download for this agent ?

I need to install something on my exchange server ?


Best Rega

...

Thiago by L3 Networker
  • 4014 Views
  • 1 replies
  • 0 Likes

Resolved! Displaying detailed session info from the command line

Hi all,

Does anybody know of a way to display detailed session information from the command line please?

In addition to the basic info provided by "show session all" I would like to extract the "Start Time" and "Bytes" values for certain devices.  I am

...

DavePalo by L4 Transporter
  • 2081 Views
  • 1 replies
  • 0 Likes

Brute Force Signatures

hi : In regard to Brute Force Vulnerability Signatures 40015 (ssh) and 40021 (rdp) :

Why is there not a way to permanently block an IP number that exceeds the configured  Number of Hits per time period? Is this possibly in the works fro a future relea

...

wlu by Not applicable
  • 12301 Views
  • 19 replies
  • 0 Likes

Site to site VPN phase one error.

Hi Team,

For Site to Site VPN in System logs showing ( description contains 'IKE phase-1 SA is deleted SA: 10.10.10.1[500]-10.10.10.2[500] cookie:eb16a2088724d32c:0000000000000000.' )

Thank you in advance,.

Gururaj by L4 Transporter
  • 3071 Views
  • 3 replies
  • 0 Likes

web browsing problem

hi,

i installed pan5020 my customer..customer have 8 branch offices with metro ethernet..but some web page cannot open from branchoffices like www.yahoo.com, www.microsoft.com,etc.(i examine rule and logs everythigs looks normal, its interesting)

when

...

lildeniz by L3 Networker
  • 4422 Views
  • 7 replies
  • 0 Likes

Ipsec VPN to Cisco ASA

Hi Guys,

right now we are trying to setuop a ipsec vpn between out palo alto 4.0.7 box and a cisco asa 8.2 box ..

Cause we are running into troubles whithin the ike setup, i would like to know the following:

1. How can i debug the vpn setup in the pa ?

...

cfpa by L1 Bithead
  • 3350 Views
  • 3 replies
  • 0 Likes

iOS VPN and Identity Certificates

We are testing Certificate Based Auth + User Based Auth for iOS VPN.  Is it best practice to export a unique Identity(Client) Certificate for each user/device? Or is it common to use the same Identity Certificate for everyone? Security wise, it would

...

jambulo by L4 Transporter
  • 1795 Views
  • 1 replies
  • 0 Likes

Resolved! How can Palo Alto protect against JBOSS vulnerability

Dear all,

we are trying to protect a JBOSS web server against a server default configuration vulnerability. This is described at.

http://www.articlesbase.com/security-articles/exploitation-and-remediation-of-jboss-application-server-default-configura

...

COMIP by L2 Linker
  • 3833 Views
  • 2 replies
  • 0 Likes

slow ftp log export

PA2020.

Exporting logs using ftp seems extremely slow. We are talking about speeds around 30 KB/s, this on a full GB network to a ftp server with fast storage. Logs are big (easily over 10GB) so it would take days to export them.

How can I speed things

...

dieter_b by L4 Transporter
  • 3598 Views
  • 7 replies
  • 0 Likes

Facebook limited filtering

Our business has a Facebook page but as a policy we have Facebook blocked as a whole.

Is it possible to unblock certain pages in Facebook only (eg. www.facebook.com/mybusiness) but maintain deny access to every other page?

Strachf by L1 Bithead
  • 2347 Views
  • 2 replies
  • 0 Likes

Resolved! Application filters

I have been trying to use the application filter functionality as I am setting up our PA with little luck.  Example being:  I would like to allow pretty much everything under "business" systems", "office programs".

First problem I am running into is i

...

BobW by L4 Transporter
  • 5433 Views
  • 8 replies
  • 0 Likes

BGP export policy is ignored after a change

Has anyone seen the following and found a solution?

I have a BGP peer setup with an export policy permitting only specific prefixes.  If I modify this policy, to allow an additional prefix, then when I am commiting the change, the firewall completely

...

Resolved! Send Generated Alarms to Syslog

Hi Guys,

I was wondering if there was a way to send the Alarm messages on the firewall to a syslog.  For example an alarm like "Current size (39047 MB) of traffic log database exceeds alarm threshold value (90%) of total allowed size (39037 MB)".

Is th

...

Controlling BYOD as well as scanning app store traffic

Hi

I've got an interesting question regarding mobile devices based on iOS or Android (maybe also Symbian and/or Blackberry OS to a much lesser extent). I searched the forums but haven't found anything posted that ask the the following questions:

1) How

...

Quinton by L3 Networker
  • 3328 Views
  • 4 replies
  • 0 Likes
  • 23580 Posts
  • 103 Subscriptions
Top Liked Authors
Labels