General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Vulnerability Protection - BlockIP

I have configured a vulnerability protection profile to blacklist the ip addresses of attackers for all brute force login attempts with the signatures provided in the threat database.  The profile works very well.  However, i would now like to see th

...

Resolved! Threath Monitor / App Monitor

Hi all,

Does anybody already succeed to auto send either Threat or Network monitor by email ?

Or able to export ? or re-create ?

Thanks for your hlep

Vincent

VinceM by L5 Sessionator
  • 3977 Views
  • 4 replies
  • 0 Likes

Resolved! Problems with user mapping

Hello.

I have a little problem with user-ip mapping i have instaled PAN Agent on a server configured it and started from what i can see it reads security logs and from there maps ip to a user. Those logs presents users as shortdomainname\user. The pro

...

Bigtom by Not applicable
  • 2805 Views
  • 2 replies
  • 0 Likes

Can I advertise a static route via OSPF?

I have OSPF working for subnets to which I'm directly connected.  I have a static route to another subnet to which I'm not directly connected.  Can I advertise this route via OSPF?  If so, how?

Updated custom response page doesn't show

Hi all

First post, better behave I've been fiddling around with the antivirus block page on our PA5050-boxes with panos 4.1.4 but for some reason the page I upload to the boxes won't show. It did change once (uncertain why), but if I now try to eithe

...

secomike by Not applicable
  • 3674 Views
  • 7 replies
  • 0 Likes

User-ID Agent odd outbound traffic patterns

All,

We've noticed some strange traffic patterns coming from our Agent boxes and am curious why, and if others are seeing something similar... ?

Looking in our Monitoring logs I see our two Agents sending data to:

14.1.1.19

14.2.1.19

14.2.1.1

Via SMB ports

...

steveo by L3 Networker
  • 2989 Views
  • 4 replies
  • 1 Likes

Negative experience from PA/PAN?

Of course there are no such thing as bugfree soft/hardware (perhaps with the exeption for that kernel which Gernot Heiser at Open Kernel Labs is involved in (http://www.etn.se/images/expert/Gernot_Heiser_OK_Labs.pdf) which is mathematical proven to b

...

mikand by L6 Presenter
  • 4346 Views
  • 7 replies
  • 0 Likes

Skype requires 'unknown-tcp'

Why is 'unknown-tcp' an application dependency of Skype,  is it possible to remove a dependency from a pre-defined application.   Or do we have to setup an application overide?

I don't really want to allow unknown-tcp 'apps' just to allow someone to u

...

JohnP by L1 Bithead
  • 5584 Views
  • 6 replies
  • 0 Likes

DHCP Relay not returning address from MS AD DHCP Server

We setup a DHCP relay to a MS 2008R2 DHCP server, server recieves the relay and passes a client address back to PA 2050 running 4.1.3, the address does not get passed through to client, logs show only thr DHCP request going out but nothing back, no b

...

aardman by L1 Bithead
  • 4012 Views
  • 5 replies
  • 0 Likes

Possible solution to slow commit

Hi, regarding of the desperately slow commits in PA specially with a large number of rules and object. From our experiencie in other systems the rule shadow check is a very high CPU feature. It's sure that PA do a rule shadow and this it's in concord

...

ssancho by L2 Linker
  • 11673 Views
  • 14 replies
  • 1 Likes

The people complain about slow commit

Whenever we make a PoC, Everybody complains about slow commit.

As far as I know, the traffic is not effected during the commit.

But people request faster commit

First, How can we explain slow commit to people technically.

Secondly, Is there any plan to

...

Block file transfers in RDP connections?

Is the RDP application visibility granular in that we can figure the PAN to allow remote desktop connections but disable the mapping of local drives to prevent file transfer? 

Nick1 by Not applicable
  • 3832 Views
  • 5 replies
  • 0 Likes

User ID dissappears

On the monitor window I can see that a large number of our users are showing their AD "user".  However, when I filter by the IP, I am finding that a "user" will be associated with an IP and all of the sudden the "user" dissapears even though the traf

...

BobW by L4 Transporter
  • 1933 Views
  • 1 replies
  • 0 Likes

USE IDENTIFICATION WITH 100 PAN AGENT

Hello,

I must use 100 PAN AGENT (limit of product) for a project. Someone have already test to use 100 pan-agent ( 25 by VSYS*5)?

do you know if the Palo alto (PA5060) work fine with this number of pan-agent.

regards,

ALLE

alle by L3 Networker
  • 3004 Views
  • 5 replies
  • 0 Likes

PBR IN HARDWARE?

Hello!

just a little question on PBR!

PA4020 support PBR in HARDWARE? Which Limitation For PBR?

thks,

ALLE

alle by L3 Networker
  • 4264 Views
  • 10 replies
  • 0 Likes
  • 24185 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels