General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 330 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3686 Views
  • 2 replies
  • 14 Likes

Resolved! Eicar Testvirus will not be recognized

On the website EICAT TESTVIRUS resides a lot of different kinds of eicar. Most of them will not be recognized by the Palo Alto Networks AV-Engine. The behaviour of the firewall is thereby a bit confusing. It seems: if you click on the links more the

...

mhuels by L3 Networker
  • 8261 Views
  • 5 replies
  • 0 Likes

Resolved! Security Policy Rule for Application and URL Category

Hi,

We have recently updated to 4.1.6 which gives more funtioinality regarding Security Policies.

I would like to know what steps are required to mix apps and URL categories in a single policy.

I had wanted to grant a user iTunes Access by Adding App-ID

...

gaitken by L0 Member
  • 2364 Views
  • 1 replies
  • 0 Likes

FTP Brute Force attack blocked only after 13 seconds

Hello,

Two months ago we correctly set up a rule to block Brute Force attacks on our FTP server in DMZ.

The related information can be found here: https://live.paloaltonetworks.com/message/16977#16977

We tested it manually by just entering wrong passwor

...

palo alto安全防范是否支持一下功能????

具备Land攻击防范功能
具备Smurf攻击防范功能
具备Fraggle攻击防范功能
具备ICMP Flood攻击防范功能
具备地址扫描攻击防范功能
具备带路由记录选项IP报文攻击防范功能
具备超大ICMP报文攻击防范功能具备time-stamp攻击防范功能
具备带源路由选项报文攻击防范功能
具备端口扫描攻击防范功能
具备ICMP不可达报文攻击防范功能
具备ICMP重定向报文攻击防范功能
WinNuke攻击防范功能

Resolved! Pan-agent settings over the WAN

We are having some issues with our remote sites as they browse the internet through the central site however they authenticate to Domain Controllers locally in the remote sites.

When we enter the remote site DC's in the pan-agent (which resides in the

...

rds by L2 Linker
  • 6490 Views
  • 12 replies
  • 0 Likes

Using QoS to set application priority

Is it possible to set priority based on application?  Most of the configurations I've found were to limit bandwidth to certain applications, so I'm curious if this is even possible.

On my PA-500 I created a QoS policy with the smtp application and set

...

Packet with application status insufficient-data

Dear All,

Do you ever face a problem in Paloalto with appliaction logged as "Insufficient-data"?

My policies set to permit the connection, but every traffic that logged in Firewall always as "Insufficient-data", also the application can't establish con

...

User-Id Agent no longer showing domain

I setup the user id agent with the PA for an organization several months back. They reported it not blocking correctly so I logged in to take a peek. The PA used to report their username as domain\user but now it is just reporting the username (with

...

SDorsey by L4 Transporter
  • 2375 Views
  • 1 replies
  • 0 Likes

Resolved! ftp export log traffic query example?

Can someone provide an example of the valid parameters and format for the query statement used in an FTP export? My immediate need is to limit to a specific vsys, and the size is too large to do through the GUI.

I know the base command is this:

     ft

...

u11756 by Not applicable
  • 2432 Views
  • 1 replies
  • 0 Likes

Resolved! How to Clear (remove) Pending CFG Changes

So I have a few changes that are in the candidate config waiting to be committed.

However there are a few changes in there that I dont remember doing and they make me a bit nervous.

How can I clear the candidate config so there is nothing to commit? I

...

choff123 by L3 Networker
  • 7853 Views
  • 2 replies
  • 0 Likes
  • 24193 Posts
  • 100 Subscriptions
Top Liked Authors
Labels