This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4129 Views
  • 0 replies
  • 0 Likes

Zero-day Vulnerability in Internet Explorer

Microsoft released a security advisory today regarding a zero-day vulnerability in all supported versions of Internet Explorer that can be exploited remotely.We are working on creating signature to protect against corresponding attack. Please stay tuned.Thanks,Sandeep

Resolved! Colour Coding Rules?

I can put in a feature request but I figure it's also worth asking here as maybe this is just something I'd find useful, maybe it isn't..Are there any plans to allow colour coding of policies?Even on our small scale PA-500 I find it quite difficult to quickly distinguish between inbound and outbound policies if I'm looking at the full list - bei...

Resolved! Swamped with Syslog logging...

Our PAN is in an L3 config, and our syslog server is in a virtual-wire zone.Basically, if I look at monitor/traffic or monitor/session browser, I'm simply swamped with syslog messages as everything is being syslogged once as the PAN management NIC goes from trust (LAN) to untrust, then again as it goes through the vwire-untrust to the vwire-dmz....

Speed Test through Palo Alto pair

Hello group,We are in the process to set up and replace the current firewall with PA-4020 pairs . During pre-test, one thing came up. Using several Speed Test sites, the results are not what we expected, particularly the UPLOAD speeds are far off .It is a big HELP if the group let us know what are your Speed Test results comparing to the expecte...

leole by L2 Linker
  • 9310 Views
  • 7 replies
  • 0 Likes

Resolved! Commit - Error

Hi,I am getting this error.Operation : CommitStatus : FAILIEDDetails : A commit is pending. Please try later.The issue has happened once before and the only way I could fix it was a reboot, i really do not want to do that, I have waited over an hour but the issue still remains.Is there a CLI command avaible to reset this issue?ThanksDarren

djbisbey by Not applicable
  • 3557 Views
  • 3 replies
  • 0 Likes

Proxy block

Hi,we have some clever students...they have found if they get a proxy address (prior to joining our network) and add it into their firefox they are getting out on the internet and from what they say bypassing the Palo URL check.Is there a way I can lock this down, I did think of http-proxy would this do it or is there a more robust clever way?Th...

djbisbey by Not applicable
  • 3040 Views
  • 2 replies
  • 0 Likes

Exporting translations for an IPAM system

I've been working on automated scripts to export my firewall configurations, gather the NAT translations and reformat the exported data into the XML format used by my IPAM system.I've managed to automate this on our Check Points by parsing the objects.C file directly from our firewall managers - however, chopping through the PA config isn't quit...

jsilvia by Not applicable
  • 2983 Views
  • 2 replies
  • 0 Likes

Resolved! Schedules

Hi,with schedules, do they apply to the policy or just URL filters?I am trying to block certain apps at certain times, I just want to confrm in my mind that schedules are applied to the whole policy, effectively switching it on or off at times?Also we have wireless users and I want to switch off their connectivity at say 2130hrs.Would the policy...

djbisbey by Not applicable
  • 3447 Views
  • 3 replies
  • 0 Likes

Resolved! PA-2020 OSPF Capacity

Hi,I've seached the data sheets and discussion forums but could not find any information on the size of the forwarding table for a PA-2020.We wish to run OSPF on this box and I need to understand the limitations related to the size of the OSPF database and number of link states we can store.Any pointers?Cheers

adevine by L1 Bithead
  • 2982 Views
  • 1 replies
  • 0 Likes

HTTP and sql injection by facebook-mail

Hi all,We recently found a threat "HTTP SQL Injection Attempt" (ID = 30514) with the application "facebook-mail".We found that information quite strange. What does it mean exactly?Was there some patterns (for example a SQL specific pattern) in the mail?I had a packets capture, but I wasn't be able to find something interesting in there.I'm sure ...

Data filter - Blocking suspicious downloads

For data filtering we set a rule to alert for certain downloads (such as .bat, .exe, etc). In the monitor log, all alerts are listed as LOW severity. I have noticed a pattern where a workstation shows a suspicious download such as game.exe or abyzdew.exe (random letters in name) and then starts showing outbound spyware or virus messages. My d...

merrydc by L1 Bithead
  • 2858 Views
  • 1 replies
  • 0 Likes

Coverage for New IPS Evasion Techniques

Stonesoft recently reported multiple IPS evasion techniques that can be used to evade detection by IPS/IDS devices. We will be releasing signatures to detect most of the evasions in our content release tomorrow. More details will be posted on this thread.Stonesoft Press Release:http://www.stonesoft.com/en/press_and_media/releases/en/2010/1810201...

  • 24336 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks