General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Upgrade/Import URL database manually

Hi everybody,

we have some trouble to download the URL database from brightcloud.

Is it possible to import the database manually.

I have seen on the CLI, that we can make an scp import url-database.

But where can I download the database?

Kind regards

Chris

...

indevis by L2 Linker
  • 3942 Views
  • 3 replies
  • 0 Likes

High CPU Usage on PANOS 3.1?

Upgraded our PA-500 to 3.1.  It came back up around an hour ago and the CPU usage has been on a pretty consistent 65-66% ever since.

I presume either this is normal, or not normal - how can I see what it's doing please?

Also even now a couple of hours

...

Response page for blocked FTP, SSL, etc...

Hi all,

Why is there no response pages for users when application like ftp, ssl, etc.. are blocked?

I have software version 3.1.1. and everything works with blocking but users don't see any info about it. Problem is, that kind of traffic is blocked at

...

volksbank by Not applicable
  • 3167 Views
  • 2 replies
  • 0 Likes

Web servers redundancy inside PA with PBF

Hi, is there anyway to have web servers redundancy with PBF. What I would like is to use PBF to balance the traffic between two internal servers and, of course, monitor this servers and chnge to one of this in case the other fails. I'm testing in lab

...

Upgraded to 3.1, URL wildcards not working

Just upgraded to 3.1.0 from 3.0.6.

I had the following URL filtering profile that I used on an inbound rule with SSL decryption so that people could only connect to valid Exchange/Outlook Web Access URLs:

webmail.ourdomain.co.uk/favicon.ico

webmail.ourd

...

SSL VPN and other options for client VPN

I'm currently using a Watchguard firewall for our remote users to connect and authenticate using built in Windows (and Mac) VPN.

I have a Palo PA-500 in the Dev environment being configured to replace the Watchguard firewall, however we have come acro

...

moha by L0 Member
  • 2923 Views
  • 1 replies
  • 0 Likes

URL Filtering Profiles - Category/Action

I'm torn even asking this question, but it seems like it might be a nice feature but at the same time possibly misused. It might also be a support nightmare when people call saying they can't get to a URL.

Would you consider adding a "Block-No-Log" to

...

jmck9999 by L1 Bithead
  • 2950 Views
  • 1 replies
  • 0 Likes

Resolved! SSL VPN- Config ERROR PAN OS 3.1

Hi,

I m trying to configure SSL VPN on PAN OS 3.1 and its giving error msg even after submitting all the necessary information.

My SETUP Details:-

1: SSL VPN using Tunnel Interface ( Newly Created in Trust Zone)

2: External Interface IP

3: Created Self Si

...

How to find objects and rules using CLI?

Hello,

I need to know if there is any method to make research based on ip adresses or groups to find out witch rules are using it on the cli. In other words, how can i use the cli to search policies in witch an ip adresse or a group of ip adresses is

...

asia by L3 Networker
  • 6073 Views
  • 6 replies
  • 0 Likes

Virtual Wire DMZ - Help Please

Hoping for some clarification on using Virtual Wire to inspect traffic to our DMZ please.

Right now the external interface of our PAN has a public IP of 1.2.3.1/24.

Its default gateway is another firewall in front of it, it's internal interface has a p

...

Unable to authenticate users on Captive Portal

Hi,

We have following issue with our setup:-


1: Captive Portal is set for entire network ( 192.168.1.0) and in Active Directory the group ( IT) is choosen which will be filtered or monitored. There are two users ( user1/user2) who are member of this gr

...

User Information in Firewall Database Cache

1: Captive Portal is set for entire network ( 192.168.1.0) and in Active Directory the group ( IT) is choosen which will be filtered or monitored. There are

two users ( user1/user2) who are member of this group.

Firewall Rule :
==============

1:  Trust

...

  • 24029 Posts
  • 102 Subscriptions
Top Liked Authors
Labels