General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Filter length

what is the maximum filter length for the log menus on the Monitor tab? what is the maximum length of a query on a report?

I am pretty sure I have exceeded it with the following query:

(app eq unknown-tcp) and (zone.dst eq sample.com) and (port.dst neq

...

Resolved! SNMP and 4.1 / 4.1.1

Under 4.0.x we were recording the traffic on the public interfaces of our PA500.

After upgrading to 4.1 this stopped working.

We dropped 4.1.1 on for other reasons but still no snmp.

If I try to do a snmpwalk on the PA500 I get nothing at all.

I couldn't

...

Resolved! How long are keept scheduled report

Hello,

how long are keep scheduled report ?

can we schedule deltion of reports older than a date ?

Can't Import SSL Certificate from GoDaddy for use on GlobalProtect Gateway/Portal

I recently installed a PA-200 at a client's office and setup GlobalProtect for SSL VPN using self-signed certificates. Now that we are ready to roll into production, we'd like to install a trusted SSL certificate. We purchased a certificate from Go

...

YouTube uploading rule failed...

Hello,

recently for testing purposes I create Youtube-uploading rule in order to deny all video uploading's to Youtube server. My disappointing grew when I saw that all video uploading's pass my rule, also when I login on my Gmail through Google Chrom

...

security policy rule index number

Hi All

In PANOS 3.1.x, i can see the security policy index unmber in the GUI, however i can't see it after upgrade panos to 4.0.9 no matter using GUI or CLI.

Is there any way to find secutiry policy index number?

Thanks.

Joy

Resolved! How to configure IPv6 advertising on PAN-OS 4.0.4?

I've set up a global IPv6 address on my interface on PA-2050 btu I can't find any place to advertise the network and router - info to the clients. How can I set up this?

CLI-commands?

Palo Alto 5020 - Traffic Monitoring

Hi,

I'd like to know if it's possible to enable Netflow version 9 or sFlow on the 5020 (4.0.9)?

From documentation I've seen online I think an upgrade is required though I'd like a confirmation of this.

Regards,

Jake

Multicast - IGMP querier

Hi,

I have a question regarding multicast. Our developers plan to deploy a multicast application in on of our DMZ´s.

Unfortunately the application generates a lot of sync traffic and this fills up all interfaces in that vlan, because igmp snooping is n

...

PBF based on domain/URL/FQDN

After research in KnowledgePoint, I understand application is not recommended to be used in PBF as single session will always be forwarded the same way. i.e. application shifts will not change the forwarding behavior.

If we want to forward traffics

...

Asterisk PBX (Gemeinschaft)

I got one Asterisk Digium PBX it runned since october without issues but now it looks like the traffic dosn't get match anymore.

I read I could use Application Override. Can someone explain what I need to configure excatly?

Regards

Guido

Block Page Redirection to Company website

Hi all,

Does Palo Alto has the capability to redirect the users block page to company website. Example if a user accesing a block url, instead of receiving a Palo Alto block page it will redirect it to company website. Everytime a users is accesing a

...

Resolved! Overcoming an application filter and url groups

This example is fictitious, but you will get the idea.

I would like to use an application filter to block all "peer to peer". So I create the necessary filter. Then I determine that I want to allow one of the items which is defined in the "peer to p

...

Conference With H.323

Hi Guys ,

It`s possible to configure a Destination NAT FROM WAN TO MY LAN WITH H.323 ?

How can i do that ?

Best Regards.

Thiago Lima.

Resolved! How to set interface type back to default

How can I set the interface type back to the default value? I want the type to be blank and the link state to be gray. Thanks!

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

Filter length

Resolved! SNMP and 4.1 / 4.1.1

Resolved! How long are keept scheduled report

Can't Import SSL Certificate from GoDaddy for use on GlobalProtect Gateway/Portal

YouTube uploading rule failed...

security policy rule index number

Resolved! How to configure IPv6 advertising on PAN-OS 4.0.4?

Palo Alto 5020 - Traffic Monitoring

Multicast - IGMP querier

PBF based on domain/URL/FQDN

Asterisk PBX (Gemeinschaft)

Block Page Redirection to Company website

Resolved! Overcoming an application filter and url groups

Conference With H.323

Resolved! How to set interface type back to default

IKEV2 w Cert - Wildcard peer for DN does not work.

Transferring assets from one CSP Tenant account to another

Proper "outside" interface configuration

Configuring Palo Firewall into an IDS

A question about ECMP

Re: MFA external provider question

Re: GlobalProtect 6.3.3

Re: SPARE device usage

Re: Upgrade path to 11.2.5 from 11.0.0 on a PA-410

Re: Global Protect application blank screen

Unlock your full community experience!

General Topics

Rules and Best Practices

Resolved! SNMP and 4.1 / 4.1.1

Resolved! How long are keept scheduled report

Resolved! How to configure IPv6 advertising on PAN-OS 4.0.4?

Resolved! Overcoming an application filter and url groups

Resolved! How to set interface type back to default