General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Site to site VPN phase one error.

Hi Team,For Site to Site VPN in System logs showing ( description contains 'IKE phase-1 SA is deleted SA: 10.10.10.1[500]-10.10.10.2[500] cookie:eb16a2088724d32c:0000000000000000.' )Thank you in advance,.

Gururaj by L4 Transporter
  • 3990 Views
  • 3 replies
  • 0 Likes

web browsing problem

hi,i installed pan5020 my customer..customer have 8 branch offices with metro ethernet..but some web page cannot open from branchoffices like www.yahoo.com, www.microsoft.com,etc.(i examine rule and logs everythigs looks normal, its interesting)when i switch to old firewall(cisco asa) everything running normal.i tried increase session time-out, ...

lildeniz by L3 Networker
  • 6068 Views
  • 7 replies
  • 0 Likes

Ipsec VPN to Cisco ASA

Hi Guys,right now we are trying to setuop a ipsec vpn between out palo alto 4.0.7 box and a cisco asa 8.2 box ..Cause we are running into troubles whithin the ike setup, i would like to know the following:1. How can i debug the vpn setup in the pa ? I'm used to ASA's but this is my first vpn setup on a PA. I want to check why the tunnel does not...

cfpa by L1 Bithead
  • 4385 Views
  • 3 replies
  • 0 Likes

iOS VPN and Identity Certificates

We are testing Certificate Based Auth + User Based Auth for iOS VPN. Is it best practice to export a unique Identity(Client) Certificate for each user/device? Or is it common to use the same Identity Certificate for everyone? Security wise, it would be better to use unique certificates, but managing them may be hassle. We are also looking into...

jambulo by L4 Transporter
  • 2333 Views
  • 1 replies
  • 0 Likes

Resolved! How can Palo Alto protect against JBOSS vulnerability

Dear all, we are trying to protect a JBOSS web server against a server default configuration vulnerability. This is described at. http://www.articlesbase.com/security-articles/exploitation-and-remediation-of-jboss-application-server-default-configuration-vulnerability-1889469.htmlHow can Palo Alto protect servers against this kind of vulnerabili...

COMIP by L2 Linker
  • 4803 Views
  • 2 replies
  • 0 Likes

slow ftp log export

PA2020.Exporting logs using ftp seems extremely slow. We are talking about speeds around 30 KB/s, this on a full GB network to a ftp server with fast storage. Logs are big (easily over 10GB) so it would take days to export them.How can I speed things up ? Is there an alternative (like: using the usb port on the device ?

dieter_b by L4 Transporter
  • 5179 Views
  • 7 replies
  • 0 Likes

Facebook limited filtering

Our business has a Facebook page but as a policy we have Facebook blocked as a whole.Is it possible to unblock certain pages in Facebook only (eg. www.facebook.com/mybusiness) but maintain deny access to every other page?

Strachf by L1 Bithead
  • 3352 Views
  • 2 replies
  • 0 Likes

Resolved! Application filters

I have been trying to use the application filter functionality as I am setting up our PA with little luck. Example being: I would like to allow pretty much everything under "business" systems", "office programs".First problem I am running into is it does not include the dependcies. OK I can get around that and create an applicatio group for t...

BobW by L4 Transporter
  • 8214 Views
  • 8 replies
  • 0 Likes

BGP export policy is ignored after a change

Has anyone seen the following and found a solution?I have a BGP peer setup with an export policy permitting only specific prefixes. If I modify this policy, to allow an additional prefix, then when I am commiting the change, the firewall completely ignores the policy for about 30s, and then starts withdrawing the prefixes that are not allowed. ...

Resolved! Send Generated Alarms to Syslog

Hi Guys,I was wondering if there was a way to send the Alarm messages on the firewall to a syslog. For example an alarm like "Current size (39047 MB) of traffic log database exceeds alarm threshold value (90%) of total allowed size (39037 MB)".Is there any way I can have that sent to a syslog server. I have threats being sent to my syslog serv...

Controlling BYOD as well as scanning app store traffic

HiI've got an interesting question regarding mobile devices based on iOS or Android (maybe also Symbian and/or Blackberry OS to a much lesser extent). I searched the forums but haven't found anything posted that ask the the following questions:1) How does an administrator ensure that apps downloaded via the app stores (i.e iStore or Adroid marke...

Quinton by L3 Networker
  • 4384 Views
  • 4 replies
  • 0 Likes

User identifcation gaps

We have an AD account for which we restrict all Internet access via a user-based security rule. The account is an auto-logon account for certain kiosk-type machines in our environment. I'm finding that the username being used on the machine is not always recognized by PA, and as a result Internet traffic is being allowed. There are other times w...

kmurphy6 by Not applicable
  • 3132 Views
  • 3 replies
  • 0 Likes

how to block mp3 ?

hi ,i just got a request from a custoer on how to block mp3.. so as currently PanOS doesnt detect it , can we add it as a signature ?BR

How can I delete reports in incorrect date field?

Hi.Firewall was working as a incorrect date. Logs were saved in incorrect date during set the incorrect date. If I open the report, it shows incorrect date as a default. I think if I delete reports which saved in incorrect date, it might be able to show reports as current date as a default.i was attached a screenshot for help you understand.Plea...

willstech by L3 Networker
  • 2744 Views
  • 1 replies
  • 0 Likes
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels