General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14544 Views
  • 1 replies
  • 4 Likes

Resolved! security rule placement

Hi All,

 

I have an outbound web-browsing rule, rule criteria is source zone (trust) destination zone (untrust) , application (web-browsing, ssl), service (tcp-80, tcp-443)

 

If you are going to create more application specific rules, does it makes more

...

ce1028 by L4 Transporter
  • 4965 Views
  • 6 replies
  • 0 Likes

Zabbix Monitoring PA-7050 via SNMP v3

Hello.

I have a couple of PA-7050 firewalls that I monitor from Solarwinds Orion via snmp v3.  However, when  I try to monitor those same devices via Zabbix (SNMP v3), I am unable to get an SNMP response via the Zabbix application.  SNMPwalk works fin

...

torr06 by L1 Bithead
  • 1248 Views
  • 3 replies
  • 0 Likes

VRRP with Cisco router LAN interface

My default branch configuration, the WAN router is the default route for the client devices on the LAN.  Lets say 10.10.1.1/24

My firewall is the default route of the WAN router, lets say 10.10.1.254/24.

Cheap layer 2 switfh on the LAN, so no L3 routin

...

Resolved! DNS Proxy/Security

I was curious to know if anyone was pointing their domain controllers to the firewall for DNS security/proxy?  Mine currently use the ISP, but the clients use the firewalls as a proxy and then just rule just forward internal domains to the DC.  Seems

...

bschaper by L2 Linker
  • 1956 Views
  • 5 replies
  • 0 Likes

Resolved! Wildfire without SSL Decryption

We are looking at Wildfire for our PA firewalls however, we are not doing any SSL decryption. Going into it I figured we only be and to use it on unencrypted traffic. But looking at the Wildfire datasheet under file support it lists TLS and SSL files

...

bafergel_1-1627663836266.png
bafergel by L2 Linker
  • 985 Views
  • 1 replies
  • 0 Likes

Resolved! Regarding sinkholed hosts

Hello Bros,

    We have subscribed to palo alto dns-security and the license has been applied to the device.

Rules with anti-spyware "dns-security sinkhole action enabled".

Now regarding the hosts with sinkhole action, that means these hosts trying to c

...

Authentication Fallback

Hello,

So, we currently authenticate administrators to our PA's via Radius (TACACS).  Is there a way to configure the PA's that it will only use the local DB / Administrators if Radius isn't available? 

Thanks!

mrsold by Not applicable
  • 5149 Views
  • 6 replies
  • 0 Likes

Issue CDN and AVG Update

Hallo Community,

 

I have an issue about AVG and CDN. I used PA 220 with Detials :

Software Version10.0.6Application Version8435-6846 (07/27/21)Threat Version8435-6846 (07/27/21)Antivirus Version3791-4302 (07/28/21)NetworkLayer 3

 

 

1. AVG Update

Regarding

...

Verify pdf report sent via email scheduler

We have configured email scheduler to send reports in pdf format.

I'm able to receive the email. But attachment is missing.

I can see from system logs that the files are created and email is sent.

How can I verify whether the PDF report was attached to

...

Paloalto don t send log correctly to logstash

Hi evrey one,
I'am new to Paloalto and I have a problem with the threath log. I am currently using ELK stack to store and visualize all log from paloalto. 
When I send the traffic log to logstash there is no problem (there are all field explained in th

...

Betorov by L0 Member
  • 767 Views
  • 1 replies
  • 0 Likes
Top Liked Authors