General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Missing data in TRAFFIC logs

Hi

PANOS ver: 3.0.5

Device: PA-2020

Exported traffic logs contains information about which protocol is used, however if the protocol is ICMP the type and code is not displayed. I a specific case im looking at right now both application and protocol is i

...

Missing fields in URL log

Hi

PANOS ver: 3.0.5

Device: PA-2020

Did some exports of the sublogtype: URL and got the following columns/fields:

Domain,Receive Time,Serial #,Type,Threat/Content Type,Config Version,Generate Time,Source address,Destination address,NAT Source IP,NAT Dest

...

Resolved! .com and .net sometimes blocked as spam?

Running 3.1.2 and have quite a few instances in our PAN log where for some reason a URL (not noticed a pattern other than the URL preceding the problem URL is typically really damned long and some sort of query/search) is blocked and all that shows o

...

Resolved! SSL Decryption Fails: sec_error_reused_issuer_and_serial

In the newest PA-OS 3.1.2 seems to be a problem with the Proxy-Certificate.

If browsing with Firefox, you get "Errocode: sec_error_reused_issuer_and_serial" on all HTTPS-Sites, if you have implented the proxy certificate in the certificat store (and i

...

Error while downloading apps, threats and antivirus updates after upgrading to 3.1

Hello

After upgrading my firewalls to 3.1, i was trying to upgrade content and antivirus dtabases, but i got yhis error message :

Server error : Failed to check content upgrade info due to generic communication error. Please try again later.

I'am using

...

Access into the panorama database

Hi All,

What access is there, if any, into the database within panorama, for a prospect that is using an automated response/ticketing system?

We would want to be able to periodically query the database, for example to extract out infected workstations,

...

DNS Zone Tranfers not working through PA

Hello,

I have a PA in front of a DNS server and since the date we installed the PA, the DNS zone Transfers to the remote site is not working.

The remote DNS admin stated that there are timeouts and that the firewall should allow fragmented packets to p

...

Custom Reports - Incorrect Dates

Hello,

We are currently running 3.1.1 Panorama code. Are there any known issues with creating custom reports and the output shows dates in the future? For instance if we create a report and choose a custom date selection (last 2 weeks for example).

...

RADIUS (not Active Directory) and Allow List

Hi, I'm configuring a RADIUS different than Active Directory, I use Radius users for SSL-VPN and GUI and all works fine but always I've to add manually the Radius user to Allow List in Authentication Profile, is there any way to avoid this. If I've t

...

internet load balancing

Hi,

Our customer has existing Sonic wall TZ210 , they confiugred Load balaning between internet links. 90% of traffics are going through the primary link & 10% ie, defined traffic from few computers are going through the secondary link.

Now we want to

...

Block msn-file-transfer security rule in VWire mode

Hi All,

I configured my PA2020 to block msn-file-transfer from any any but it doesn't work. I checked Monitor traffic log already show "Deny" on msn-file-transfer. However, it is successful to transfer a file in msn in my test lab. Below is my rule se

...

Resolved! 3.1.1 and captive portal

Hi,

I upgraded my pan to 3.1.1 version and I never find these commands:

"debug captive-portal"

tail mp-log captive-portal

After the upgrade the radius authentication doesn't function

any suggestions?

thanks

Resolved! BrightCloud - are they having issues?

Seems lots of URLs are being flagged up that appear to be in totally the wrong categories.

These are URLs that all have no link/commonality whatsoever and that worked perfectly yesterday but today are in categories such as spam-url and cult and occult

...

Terminal Server Agent RoadMap

Hi All.

I'm really interested into know what is the evolution of Terminal Server Agent. I mean, now only Windows Server 2003 and XenApp 4.5 version are supported for the moment, but new environments are installed on XenApp 5 or new XenApp 6 in o coupl

...

Resolved! URL Filtering Process Order

we've run some tests on both at client side and in our office lab.

the process for handling url fitlering will start with BLOCK list --> ALLOW list --> URL Category

the logic of it is quite understandable, however, the problem lies with BrightCloud DB.

...

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free