General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 74 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3324 Views
  • 2 replies
  • 14 Likes

Proxy block

Hi,

we have some clever students...

they have found if they get a proxy address (prior to joining our network) and add it into their firefox they are getting out on the internet and from what they say bypassing the Palo URL check.

Is there a way I can l

...

djbisbey by Not applicable
  • 2242 Views
  • 2 replies
  • 0 Likes

Exporting translations for an IPAM system

I've been working on automated scripts to export my firewall configurations, gather the NAT translations and reformat the exported data into the XML format used by my IPAM system.

I've managed to automate this on our Check Points by parsing the object

...

jsilvia by Not applicable
  • 2113 Views
  • 2 replies
  • 0 Likes

Resolved! Schedules

Hi,

with schedules, do they apply to the policy or just URL filters?

I am trying to block certain apps at certain times, I just want to confrm in my mind that schedules are applied to the whole policy, effectively switching it on or off at times?

Also w

...

djbisbey by Not applicable
  • 2395 Views
  • 3 replies
  • 0 Likes

Resolved! PA-2020 OSPF Capacity

Hi,

I've seached the data sheets and discussion forums but could not find any information on the size of the forwarding table for a PA-2020.

We wish to run OSPF on this box and I need to understand the limitations related to the size of the OSPF databa

...

adevine by L1 Bithead
  • 2187 Views
  • 1 replies
  • 0 Likes

HTTP and sql injection by facebook-mail

Hi all,

We recently found a threat "HTTP SQL Injection Attempt" (ID = 30514) with the application "facebook-mail".

We found that information quite strange. What does it mean exactly?

Was there some patterns (for example a SQL specific pattern) in the ma

...

Data filter - Blocking suspicious downloads

For data filtering we set a rule to alert for certain downloads (such as .bat, .exe, etc).  In the monitor log, all alerts are listed as LOW severity.  I have noticed a pattern where a workstation shows a suspicious download such as game.exe or abyz

...

merrydc by L1 Bithead
  • 2128 Views
  • 1 replies
  • 0 Likes

GRE and IPSec traffic

Hello,

Does PanOS 3.1.4 in L3 mode supports GRE and IPSec protocols? We need to NAT this traffic.


Br!

Ahti Akel

akel by L1 Bithead
  • 4395 Views
  • 8 replies
  • 0 Likes

Coverage for New IPS Evasion Techniques

Stonesoft recently reported multiple IPS evasion techniques that can be used to evade detection by IPS/IDS devices. We will be releasing signatures to detect most of the evasions in our content release tomorrow. More details will be posted on this th

...

Adobe zero-day vulnerability security advisory

Adobe released a security advisory (APSA10-05) today about a zero-day "critical" vulnerability in Adobe Flash Player, Adobe Reader and Acrobat that can be exploited remotely. For details regarding affected versions and OS, please refer to Adobe's sec
...

PA-500 - Auto reboot byitself

Hi Again,

The appliance is auto reboot after running for some time without any rebooting or shutdown. After performing some checking, the system log file shows that "captive_portal: restarts exhausted, rebooting system".

Yes, i did some minor changes o

...

eugene by Not applicable
  • 2276 Views
  • 2 replies
  • 0 Likes

Resolved! SSL VPN and RADIUS

anybody have a walk through on setting this up.  I have SSL VPN enabled currently on our PA2050 for a few folks however I'm using the local database for it and would like to switch to RADIUS authentication.  I don't currently have a RADIUS server how

...

After SSL VPN connected, there are no routes to private LAN

My PAN SE just helped setup our SSL-VPN.  The first two users had no problems, but the next two did.  I observered both first hand.  Once the SSL VPN client is connected, I was not able to ping internal IP addresses.  I checked the routes on the PC (

...

sj3vans by Not applicable
  • 2470 Views
  • 2 replies
  • 0 Likes
  • 24124 Posts
  • 100 Subscriptions
Top Solution Authors
Labels