General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Strange Sharepoint upload problem.

Hi,

I have a bit of a strange one hence the strange question.

I have a user who wants to upload files to a company's sharepoint website. Now as my rules stand currently they are not allowed to upload or use certain web applications.

I tried making a cus

...

Resolved! Problem installing PAN User-ID agent V 4

We currently have User ID agent 3.1.2 installed on my 2 domain controllers and I am trying to upgrade them to V 4.1.4-3. Every time I try to install it I get it failing to install. I get the errors below in the logs.

07/23/12 10:57:55:960[ Info 1775]:

...

is it possible to export firewall rule only??

Hi all.

Is it possible to export security policy with CSV, PDF or txt format?? I can’t find any export menu only for firewall rule.

If it is possible, is it able to modify that exported firewall rule??

And then is it possible to import modified firewall

...

willstech by L3 Networker
  • 8448 Views
  • 19 replies
  • 0 Likes

Lot of 'insufficient-data'

Hello,

We see a lot of 'insufficient-data' traffic on our firewall and we couldn't find any reason so far. Does anyone have a good idea on how we can troubleshoot the issue?

If we click on the insufficient-data bar we get redirected to the ACC but it d

...

oschuler by L4 Transporter
  • 6290 Views
  • 6 replies
  • 0 Likes

CNSE Anyone?

Just wondering if anyone out there has done the CNSE and can offer any advice regarding recommended reading etc?

Thanks

brownn by L0 Member
  • 10449 Views
  • 27 replies
  • 1 Likes

DMZ Setup

I'm in a position where I need to move a device that is currently inside my network to a DMZ on my Palo 2050. Which puts me in a position where I need to create a DMZ on my Palo. Does PA have a good document for creating a DMZ? I haven't been able to

...

interface failover on PA500

Since link aggregation (LACP or etherchannel) is only supported on PA4000++ I want to build a simple interface-failover / interface-group setup (like any other enterprise firewall allows even on low-end devices).

group

To do this I would do the followi

...

ctr_ts by L1 Bithead
  • 3125 Views
  • 1 replies
  • 0 Likes

Resolved! Does WildFire work in "Tap" mode?

We have had WildFire turned on for almost a week.  In the Data Filtering logs, it has "forwarded" numerous "PE" files and only 1 "PE" file was logged as "wildfire-upload-success".  That 1 file happened to be coming through the interfaces that are set

...

jambulo by L4 Transporter
  • 4284 Views
  • 3 replies
  • 0 Likes

ssl-vpn and IPsec tunnel Palo Alto with Check Point

Hello all,

I'm hoping that somebody may be able to answer a few questions I have about the configuration of Palo Alto firewalls please?

I want to set up two differents VPN, one ssl-vpn and one IPsec, i do this because i want to conect to my firewall fr

...

is it possible to add a CA in PA device?

Hello there.

I have a question related to CA for SSL client.

Customer has a certificate which issued by Trusted Root CA, but this trusted root CA is not contained in an ssl client's browser.

And then, the customer certificate was issued by this CA.

So,

...

willstech by L3 Networker
  • 2535 Views
  • 4 replies
  • 0 Likes

Resolved! Administrator login alert

Hello -

I'd like to create an alert to notify me whenever an administrator logs in to our firewall.  Any thoughts/suggestions as to how best to do this?

Tnx, Tom

TomS by L1 Bithead
  • 2031 Views
  • 1 replies
  • 0 Likes

Blocking darknet hits

Is it possible to implement a darknet on PAN OS 4.1?  I have a number of publically addressable subnets that aren't in use and I'd like to block all traffic, for some period of time, from Internet-based hosts who hit those subnets.  I currently have

...

dhamlin by L0 Member
  • 2465 Views
  • 3 replies
  • 0 Likes

FQDN address object resolution (multiple IP's)

Hi

Can't seem to find more information besides the Administrator's guide v4.1 on this. I have two questions on this (FQDN address objects):

1) Security policies using a FQDN address object works great. Tested it by blocking access to certain websites.

...

Quinton by L3 Networker
  • 9442 Views
  • 5 replies
  • 0 Likes

GP agent without auto starting services

Hello PAN,

Some of our users has a GPAgent on their private computer in case (very rarely) that they suddenly need to be able to connect to the company.

For such users - the automatic starting of the services are *extremly* annoying and disturburbing f

...

sitecore by Not applicable
  • 1743 Views
  • 1 replies
  • 0 Likes
  • 24181 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels