General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Slow Identification

We are currently in the process of switching over from a Cisco ASA to 2 palo alto firewalls in high availability. We currently have one in transparent mode to provide web filtering. The other we are using in a Layer 3 configuration. We are testing some of the rules on the layer 3 box by using policy based routing to send only a few vlans to that...

cbolitho by L1 Bithead
  • 2514 Views
  • 1 replies
  • 0 Likes

Resolved! URL Filtering Continue and Override Page

I want to use Active Directory for all blocks and overrides. We currently have a Barracuda that presents a block page that presents users with password entry that utilizes Active Directory. Certain groups are allowed access. Can this be done on the PAN?

Resolved! Authenticated NTP

I checked the Admin guide 4.1, but I didn't see anywhere to set NTP Authentication to its servers or peers. Is this functionality even available in PanOS? NTP Authentication preferably via PKI in NTP v4, SHA-1, or MD5.Thank you.

mark1ped by Not applicable
  • 2907 Views
  • 1 replies
  • 0 Likes

Resolved! Office 365 App detection

Hi, I was wondering if there are any plans or a method how to detect Office 365 traffic?We have no URL scanning license on the box, so we depend on the App detection method.Because all traffic is a SSL connection, PaloAlto reports the traffic as general SSL Application.Many thanks for any suggestion about my issue.

obor by L1 Bithead
  • 3055 Views
  • 1 replies
  • 0 Likes

Resolved! SSL Decryption: Clarification With Regard to Use of Wildcard Certs and Forward Proxy

The admin guide and online help are a bit thin here but lots of good info through this resource. One document seemed to indicate that ssl forward proxy (decrypting my client traffc for inspection on it's way "out") only worked with a self-signed cert or an internal trusted cert. In other words, I either generate one on the device and distribut...

Is wildfire mistaken? false negative?

Hello,i'm testing wildfire at the moment.We had a security incident on a corporate notebook there were a lot of dropped "ZeroAccess.Gen Command and Control Traffic" in the thread-log.We scanned the laptop with different virus/spyware scanners and found a file which i'm uploaded to wildfire and virustotal.Wildfire says it's Benign.Virustotal with...

Alarms on the PAN

How do get alarms to work on the PAN device. I have gone in to Device --> Alarms and set security violations threshold to 1 and the time period to 3600. However, I do not get any alarms. How does this work exactly. I can set a "security violations threshod", but what exactly makes up a security violation?

TomH by L1 Bithead
  • 2703 Views
  • 1 replies
  • 0 Likes

Resolved! Using User-ID v4, how do I exclude users in certain groups?

In the old style v3 user-ID agent, I could exclude certain groups of users from being mapped. How do I do so in v4?Background :We have certain users in a department group "Infosys" who are being blocked from web browsing. It turns out they're launching an MS tool under administrative credentials and user-ID is matching their IP against this new ...

broadleyn by Not applicable
  • 6310 Views
  • 6 replies
  • 0 Likes

SSL decryption, which version of SSL is used ?

All,We have implemented SSL decryption for a customer. The certificate used on the PA is the same as on the server.Our systems are scanned weekly by Qualys. One of the vulnerability is the following:1/ SSL Server has SSLv2 Enabled VulnerabilitySolution:Disable SSLv22/ SSL Insecure Protocol negotiation weaknessSolution:OpenSSL has released new ve...

loosj by Not applicable
  • 3152 Views
  • 2 replies
  • 0 Likes

Resolved! Timed Report

Hi,How can we generate a custom report with a start and end time in it?Pleas help.Thanks,Rex

policy-based ipsec vpn

i want to configure policy based IPSec vpn , in the administration guide i can see the steps for route-based IPsec VPN using tunnel interface , and directing the interesting traffic through the tunnel interface , nut i want to configure it without tunnel interface

  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels