General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 89 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3332 Views
  • 2 replies
  • 14 Likes

Scheduling PANOS command using ssh?

I'd like to have a command run on our PAN at a scheduled interval.

I know this can't be done "on-box" but I should be able to schedule a job to connect to the PAN and run the command.

I've been experimenting with plink and whilst I can make it connect

...

allow icmp type 3

Hello,

How to configure policy to deny all icmp types, but only allow icmp type 3. Is it possible at all?

Thanks!

akel by L1 Bithead
  • 2531 Views
  • 2 replies
  • 0 Likes

SSL VPN Problem

Hi All,

I'm having teething problems with our SSL VPN client.  The client installs fine on Win7-64 and XP.  I've followed the recommendations for Win7-64 and the installation all seems fine. Everything works fine when establishing the tunnel. My polic

...

URL Filtering - Changes in 3.1.7?

I have a PAN that has been running 3.1.6 quite happily.

We have an internal Exchange/OWA server so we have rule in place to allow inbound access to it, and the rule uses a URL filtering profile that allows only the IIS virtual directories needed to ac

...

Captive Portal & 3.1.7

Hi,

we upgraded to 3.1.7 on Monday, afterwhich our iphones and android devices failed to get through, it appeared they didn't even close as there was no evidence on the logs.

Today I rolled back to 3.1.6 and the captive portal worked again.

Anyone el

...

djbisbey by Not applicable
  • 1797 Views
  • 2 replies
  • 0 Likes

PA4050/Panorama Log Archive Strategy help

We have one of our new PA4050s running in TAP mode listening to our datacentre firewalls (the firewalls they will replace - these are ASFs running Checkpoint FW1). We are also running Panorama on test machine in our testlab. The PA4050s are logging l

...

fmd by L3 Networker
  • 3762 Views
  • 6 replies
  • 0 Likes

About regular expression at data filter for Korea SSN

Hello.

I was able to test function of data-filter for credit card number and social security number. so I created custom signature of data patterns for Korea social security number but I could not apply custom data pattern as a data filter.

PA box said

...

ttongfly by L3 Networker
  • 1803 Views
  • 1 replies
  • 0 Likes

Port Scan/Host Sweep settings...

What is everyone using for their Port Scan/Host Sweep settings in the Zone Protection profile?

Mine are at...

TCP Port Scan

5 secs

800 events

UDP Port Scan

5 secs

800 events

Host Sweep

2 secs

200 events

...I may have to fine tune it some more to lower the amoun

...

jambulo by L4 Transporter
  • 4337 Views
  • 1 replies
  • 0 Likes

Users With Two LDAP Accounts

Hi All,

Our domain administrators have two Active Directory user acounts; a standard 'username' for normal day-to-day tasks, and a 'username_a' for administrative work.  Occasionally, PA will pick up the '_a' account when checking group access instead

...

sclarke by L0 Member
  • 1534 Views
  • 1 replies
  • 0 Likes

How to configure Captive Portal NTLM auth?

I have a customer who has AD and is using the UserAgent sucessfully.

However, many users are not always logged in, or are using corporate hardware, so aren't logged in.

I want to configure Captive Portal for non-logged in users that uses NTLM to authen

...

User-ID Detection fails after install a second Terminal Server Agent

After installing 10 terminal server agents and 1 PAN-agent on a PA-2050 the appliance cannot connect to any agent.

admin@mi2-pan2> show user pan-agent statistics

Name             IP Address      Port    Vsys        State             Users  Grps  IPs   

...

mhuels by L3 Networker
  • 3095 Views
  • 5 replies
  • 0 Likes

Resolved! Multiple categories in Brightcloud

I've come across a few websites, when I run the URL in Brightcloud, can contain anywhere from 2 to 5 categories.

When a URL has multiple categories in Brightcloud, which one does Palo Alto Networks choose?

Here is a good example.

www.coffeed.com (coffee

...

  • 24126 Posts
  • 100 Subscriptions
Top Solution Authors
Labels