Resolved! How can I see users hitting a certain NAT rule?
Is this even possible? I know I can see the security rules being hit in the logs but what about the NAT rules?
Is this even possible? I know I can see the security rules being hit in the logs but what about the NAT rules?
Hi, I was wondering if there are any plans or a method how to detect Office 365 traffic?We have no URL scanning license on the box, so we depend on the App detection method.Because all traffic is a SSL connection, PaloAlto reports the traffic as general SSL Application.Many thanks for any suggestion about my issue.
The admin guide and online help are a bit thin here but lots of good info through this resource. One document seemed to indicate that ssl forward proxy (decrypting my client traffc for inspection on it's way "out") only worked with a self-signed cert or an internal trusted cert. In other words, I either generate one on the device and distribut...
Hello,i'm testing wildfire at the moment.We had a security incident on a corporate notebook there were a lot of dropped "ZeroAccess.Gen Command and Control Traffic" in the thread-log.We scanned the laptop with different virus/spyware scanners and found a file which i'm uploaded to wildfire and virustotal.Wildfire says it's Benign.Virustotal with...
How do get alarms to work on the PAN device. I have gone in to Device --> Alarms and set security violations threshold to 1 and the time period to 3600. However, I do not get any alarms. How does this work exactly. I can set a "security violations threshod", but what exactly makes up a security violation?
In the old style v3 user-ID agent, I could exclude certain groups of users from being mapped. How do I do so in v4?Background :We have certain users in a department group "Infosys" who are being blocked from web browsing. It turns out they're launching an MS tool under administrative credentials and user-ID is matching their IP against this new ...
All,We have implemented SSL decryption for a customer. The certificate used on the PA is the same as on the server.Our systems are scanned weekly by Qualys. One of the vulnerability is the following:1/ SSL Server has SSLv2 Enabled VulnerabilitySolution:Disable SSLv22/ SSL Insecure Protocol negotiation weaknessSolution:OpenSSL has released new ve...
Hi,How can we generate a custom report with a start and end time in it?Pleas help.Thanks,Rex
在中国很多用户都是通过ou进行AD域结构管理,客户希望安全策略能够针对ou配置,palo alto有没有解决方案或第三方方法将ou转成group呢?现在很多项目因此功能没有突破受到影响。USE
Hi, I know that security rule can set with user and group but some customer need the OU.the PAN support this ?
i want to configure policy based IPSec vpn , in the administration guide i can see the steps for route-based IPsec VPN using tunnel interface , and directing the interesting traffic through the tunnel interface , nut i want to configure it without tunnel interface
Hi there,I have some DVR CCTV cameras on some other sites that I need to be able to view within my network behind the PA box. At the moment I have been able to get them access by doing a security rule allowing access from certain users/IP's to the IP addresses of said DVR's onsite. However, I have not been able to lock these down very much. At t...
A client want to download a exe file from a bank website to log into its online banking system, however she got the following message after she clicked download link "http://www.cmbc.com.cn/download/民生个人网银安全控件.exe".Is there anyway to unblock the specific exe file in PAN?The software version is 4.1.7.Virus Download BlockedDownload of the virus ha...
Hi I'm trying to configure group mapping settings of user identification. I'm confused that what is the default value of update interval on group mapping? Or should I let it blank? I can not find any information in Administrator Guide. Does anyone kindly tell me?Thanks,Scottie
On a PAN with no BrightCloud license, you can still use the URL filtering "Block" and "Allow" lists. Right now I use that feature to have a "log-all" URL filtering policy where I have "*" in the block list and an action of "alert." But now I have one (or it could be a short list) of URLs that I want to really block, i.e. an action of "block." Ho...
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |

