General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! PA-200 - SMTP \s

Cant send emails out. Reviving emails works fine.If i try to telnet out to a known working MX it times out.tried to allow outgoing firewall rules with app ID and Service. nothing works.Running PAN OS 4.1.7This worked on earlier versions of the PAN-OSRegards,Peet

PoTski by L0 Member
  • 3824 Views
  • 1 replies
  • 0 Likes

Resolved! Internet Explorer 0 Day - Sept 17, 2012

Is there a signature for the new IE 0 day yet?https://isc.sans.edu/diary/IE+Zero+Day+is+For+Real+/14107http://technet.microsoft.com/en-us/security/advisory/2757760There is a metasploit module out so.. that means there a working exploit 'in the wild' to base a sig on...Normally I find the CVE and then look it up in Threat Vault which will give me...

choff123 by L3 Networker
  • 10411 Views
  • 18 replies
  • 1 Likes

Resolved! Sending user logins via Syslog

Hi all,I have not found a way to send user logins to an external syslog server. I have traffic allows/denies coming through successfully, and "misc. system events." Is there a custom configuration that needs to be done to get user login date/time? We need this for compliance.Thanks,Eric H.

eharvey by L0 Member
  • 5038 Views
  • 5 replies
  • 0 Likes

Resolved! clear arp

Hi,Do we have a option to clear arp entry for only one entry ?I tried this command but it seems it clears all arp for an interface.

Resolved! Chrome Bypassing Captive Portal for Google Services

Hi,PANOS 4.1.6Client OS: Windows 7Client Browser: Google Chrome 21.0.1180.89I have PAN running with CaptivePortal (Public Certificate with AD Auth profile). Everything works fine when I use Firefox, Chrome and IE (in the case of IE except for the small hitch discussed here in this forum when running on Windows7). I am prompted to Authenticate We...

actibit by L2 Linker
  • 14815 Views
  • 18 replies
  • 1 Likes

Resolved! OSPF between PAN devices

Hi all,I have the following scenario:CPD 1: Internet ISP1 -- PAN1 -- ROUTER1CPD 2: Internet ISP2 - PAN 2 -- ROUTER2And a layer 2 connection between CPD1 and CPD2 (in different locations). Initially, there were only router1 and router2 (with their respective ISP Internet connections) with OSPF area 0; now, I've added a PAN device to each CPD, in...

Resolved! is this possible for syslog

Hi,We want all policies option log forward as syslog.Can we make this for all policies at one time or shoul we go to every policy option to select syslog. There are many policies.Thanks.

PA500 arp cache limit reached - any ideas?

Hi I have 2 PA500 firewalls running in a active/passive HA setup, the firewalls are fully integrated into active directory using the Identification client for security polices all clients on the network are set to use our core switch as their default gateway and the switch has a route set so it uses the firewalls IP as its gateway. Problem is th...

IPSEC VPN Tunnel Problem

PAN PA2020 PAN OS 4.16 I have a point to point vpn setup from our company to another company that is hosting our financial application.We have 10 different proxy IDs setup to limit subnet's that can access the vpn for example:Almost everyday, all proxy ids can access the vpn tunnel with the exception of proxy id 2 or proxy id 3.Any thoughts?Than...

almay by L2 Linker
  • 4008 Views
  • 2 replies
  • 0 Likes

How to "fix" vulnerabilities.

Hi,I have a lot of vulnerabilities that keeps triggering in my firewall, but I'm not sure whats causing it or how to fix it. Most "attacks" are done by servers or clients on my own network...- Microsoft Windows SMB Fragmentation RPC Request Attempt (14K). Any ideas how to fix this.- HTTP Forbidden Error (7K). This would make sende if it was 3...

johnd by L2 Linker
  • 3478 Views
  • 2 replies
  • 0 Likes

Resolved! SSL for GlobalProtect / Captive Portal

Hi All,I'm attempting to install a wildcard certificate on the firewall for Global Protect and Captive Portal without much luck.Basically I'm trying to use the existing wildcard certificate, the organization has. Steps I've taken:1) Export the certificate and the private key as *.pfx out of IIS. 2) Convert these to PEM files with openssl.3) Down...

BTS_MS by L2 Linker
  • 4935 Views
  • 2 replies
  • 0 Likes

VoIP over NAT issues: Ring but no audio; disconnects

I have our VoIP PBX set up with an IP on our external side via NAT. The policy is a simple static NAT from the internal IP to the external. I also have the correct security policies in place to allow SIP/RTP traffic to pass freely to and from the external IP address. The PBX server can be accessed via HTTP from outside our network, and my cell p...

  • 24403 Posts
  • 123 Subscriptions
Top Solution Authors
Labels