General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 325 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3681 Views
  • 2 replies
  • 14 Likes

Resolved! Double running Pan Agent - Precedence

Hello,

We have Pan Agents running on 2 servers - querying against the same list of AD controllers.  Is there a precedence that the PAN devices will utilize if the Pan Agent logs have 2 entries for the same IP - but not the same user - or none?

For inst

...

CRHC by L4 Transporter
  • 1931 Views
  • 1 replies
  • 0 Likes

FTP Brute Force Attempt vulnerability protection

I enabled "FTP Brute Force Attempt" (ID 40001) vulnerability protection, but my FTP server logs are still filling up with unsuccessful brute force login attempts. I've tried "drop", "drop-all-packets", and "reset-both" but it doesn't seem to make any

...

dbaumann by L1 Bithead
  • 4041 Views
  • 3 replies
  • 0 Likes

Resolved! PAN agent 3.1.1 connectivity problem

Hi All,

I am using PA 2020 and running v3.1.2 with PAN agent v3.1.1. However, the PAN firewall cannot get the info from agent with below error. It capture from PAN agent log file.

2010 05 26 15:08:37, New Connection(10.123.10.107:39564) Socket(652)
2010

...

how do I get a pcap of threat on PANOS 3.0.x?

Dear manager.

I trid to find command on PA using panos 3.0.8 for packet capture of threat but could not. and I couldn't find any information in this community.

I wonder that threat pcap is being used only PANOS 3.1.x? or having a different command?

Than

...

ttongfly by L3 Networker
  • 2005 Views
  • 1 replies
  • 0 Likes

BGP authentication

I have an RFP with a requirement for BGP support RFC2385 MD5 signatures within BGPv4.

Can PAN-OS 3.1.2 do this?

KatanaNZ by L3 Networker
  • 2372 Views
  • 3 replies
  • 0 Likes

server load balancing on PA-4020?

I'm working on a Data Center redesign.  One design we are considering will require replacing a core switch which currently gives us the ability to load balance a few sets of systems (within a set, not across) by defining an outwardly facing IP that b

...

bhelman by L2 Linker
  • 1809 Views
  • 1 replies
  • 0 Likes

Windows EXE Data filter

Howdy,

Quick question:  Does anyone know how to filter on just Windows Executable (EXE) in the data filtering log?  Thanks in advance!

Ebowd

ebowd by Not applicable
  • 1889 Views
  • 1 replies
  • 0 Likes

Resolved! Brute force and scanning signatures

Box: PA-2020 (probably all)
OS Version: PANOS-3.0.6
Hi!
I have some questions and suggestions for the threat-ips part of the box.
1. Ability to view settings for scanning and brute force signatures.
- What are the settings for these signatures? I can
...

u2521 by Not applicable
  • 872734 Views
  • 13 replies
  • 1 Likes

PDF Summary Schedule

Hello,

Could you provide details on how the Summary Schedule works.  The reports work properly and email properly.  They are sent at 4:00AM - and there seems to be no ability to modify that.  Also I am unclear what time frame I am seeing in the report

...

CRHC by L4 Transporter
  • 3286 Views
  • 4 replies
  • 0 Likes

APP vs URL

Despite the fact that I've blocked *.logmein.com and the logmein application, I'm still seeing traffic permitted to logmein.com. On inspecting the traffic log details, I can see that the traffic is being identified in 2 ways:


06/21 13:07:59  THREAT  u

...

robert.b by L1 Bithead
  • 2123 Views
  • 1 replies
  • 0 Likes

Resolved! Spyware Download Tab

Setting up new PA2020.  Have upgraded to 3.1.2.  In looking at SpyWare profiles, I am not seeing a Download Tab.  I only see a PhoneHome Protection and an Exception Tab.

What am I missing?

  • 24192 Posts
  • 100 Subscriptions
Top Liked Authors
Labels