General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 689 Views
  • 0 replies
  • 0 Likes

Resolved! Double running Pan Agent - Precedence

Hello,

We have Pan Agents running on 2 servers - querying against the same list of AD controllers.  Is there a precedence that the PAN devices will utilize if the Pan Agent logs have 2 entries for the same IP - but not the same user - or none?

For inst

...

CRHC by L4 Transporter
  • 2312 Views
  • 1 replies
  • 0 Likes

FTP Brute Force Attempt vulnerability protection

I enabled "FTP Brute Force Attempt" (ID 40001) vulnerability protection, but my FTP server logs are still filling up with unsuccessful brute force login attempts. I've tried "drop", "drop-all-packets", and "reset-both" but it doesn't seem to make any

...

dbaumann by L1 Bithead
  • 5866 Views
  • 3 replies
  • 0 Likes

Resolved! PAN agent 3.1.1 connectivity problem

Hi All,

I am using PA 2020 and running v3.1.2 with PAN agent v3.1.1. However, the PAN firewall cannot get the info from agent with below error. It capture from PAN agent log file.

2010 05 26 15:08:37, New Connection(10.123.10.107:39564) Socket(652)
2010

...

how do I get a pcap of threat on PANOS 3.0.x?

Dear manager.

I trid to find command on PA using panos 3.0.8 for packet capture of threat but could not. and I couldn't find any information in this community.

I wonder that threat pcap is being used only PANOS 3.1.x? or having a different command?

Than

...

ttongfly by L3 Networker
  • 2244 Views
  • 1 replies
  • 0 Likes

BGP authentication

I have an RFP with a requirement for BGP support RFC2385 MD5 signatures within BGPv4.

Can PAN-OS 3.1.2 do this?

KatanaNZ by L3 Networker
  • 2800 Views
  • 3 replies
  • 0 Likes

server load balancing on PA-4020?

I'm working on a Data Center redesign.  One design we are considering will require replacing a core switch which currently gives us the ability to load balance a few sets of systems (within a set, not across) by defining an outwardly facing IP that b

...

bhelman by L2 Linker
  • 2126 Views
  • 1 replies
  • 0 Likes

Windows EXE Data filter

Howdy,

Quick question:  Does anyone know how to filter on just Windows Executable (EXE) in the data filtering log?  Thanks in advance!

Ebowd

ebowd by Not applicable
  • 2181 Views
  • 1 replies
  • 0 Likes

Resolved! Brute force and scanning signatures

Box: PA-2020 (probably all)
OS Version: PANOS-3.0.6
Hi!
I have some questions and suggestions for the threat-ips part of the box.
1. Ability to view settings for scanning and brute force signatures.
- What are the settings for these signatures? I can
...

u2521 by Not applicable
  • 874638 Views
  • 13 replies
  • 1 Likes

PDF Summary Schedule

Hello,

Could you provide details on how the Summary Schedule works.  The reports work properly and email properly.  They are sent at 4:00AM - and there seems to be no ability to modify that.  Also I am unclear what time frame I am seeing in the report

...

CRHC by L4 Transporter
  • 3915 Views
  • 4 replies
  • 0 Likes

APP vs URL

Despite the fact that I've blocked *.logmein.com and the logmein application, I'm still seeing traffic permitted to logmein.com. On inspecting the traffic log details, I can see that the traffic is being identified in 2 ways:


06/21 13:07:59  THREAT  u

...

robert.b by L1 Bithead
  • 2438 Views
  • 1 replies
  • 0 Likes

Resolved! Spyware Download Tab

Setting up new PA2020.  Have upgraded to 3.1.2.  In looking at SpyWare profiles, I am not seeing a Download Tab.  I only see a PhoneHome Protection and an Exception Tab.

What am I missing?

  • 23966 Posts
  • 113 Subscriptions
Top Liked Authors
Labels