General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! UIA

How to download User Identification Agent ?

Can a PA replace data in a stream?

PA have support for datafiltering but is it possible to also, when a rule is triggered, to replace the data and pass it through?

Like exchanging "User-Agent:" in all http-requests (where User-Agent exists in the header) into a common User-Agent string

...

rps by L3 Networker
  • 1769 Views
  • 1 replies
  • 0 Likes

Resolved! User Identification Agent with Active Directory

I know that PA Firewall uses MGT interface to connect to user Identification Agent, I know that most of the other services can be set to use any other interface with the "Service Route Configuration" commands.

Is there any method to use any other inte

...

Resolved! Logging - Best Practise?

What is considered "best practise" to get useful logfiles should the need arise to go through them?

The default seems to be CSV of source and destination IP/User but, for example, how would I get the URL visited since 99% of the time that is the bit w

...

False Positives problem of anti-virus

Hi,

I received a virus block message (  Client-IRC/IRC.mirc.0113 ) when I entering the following URL:

http://pmb.update.sony.net/SPU/SPUDownloadManagerInst.exe

But this file was passed by other virus scan software (Sophos).

Was It a false positive or not

...

Resolved! Creating Custom Applications - Dummies Guide?

Is there a dummies guide to creating custom application please?

We have a couple of "in-house" apps that always pass traffic on certain ports, always to/from a certain IP range, and I'm struggling to see how to put "something" in place that says "If t

...

Dynamic Update Failing

With in Pano and direct on 3 PAN devices - I am receiving the below error when attempting to download yesterday's threat update.  I am going to try a manual upload.  This is the first time this has event has occured.  Are there any issues with downlo

...

CRHC by L4 Transporter
  • 4424 Views
  • 5 replies
  • 2 Likes

Simply correlate theats and URL's

I'm surfing throgh differents threats (virus,spyware,etc) in the monitor windows and in some cases I find out in the other filed the URL wher it came from otherwise moslty of the time I just see the source/destination IP.

My question: is possible to c

...

asecus by Not applicable
  • 2801 Views
  • 3 replies
  • 0 Likes

Resolved! Path-Monitoring Virtual Wire

Hi everybody,

PA-2050
Software: 3.0.5

we have configured a Cluster and want to use path monitoring
over a Virtual Wire.

The source IP must be an IP in the same subnet as the destination IP?

We have implemented a Virtual Wire in a VLAN tagged environment.
Is

...

indevis by L2 Linker
  • 4220 Views
  • 1 replies
  • 0 Likes

Resolved! SSL VPN - DHCP Relay and Deny lists

Is there a way to configure the SSL VPN to rely on DHCP relay instead of using it's own internal IP pool?  I thought enabling it on the public interface might work, but I don't really like the thought of anyone in that same segment getting one of our

...

jdorland by Not applicable
  • 2545 Views
  • 1 replies
  • 0 Likes

Resolved! URL Filtering and search ahead

Hi

I have 2 questions about fomr palo's we've just bought.

FIrstly I'm trying to upgrade the URL filtering definitions, andwhen I click upgrade, it pops up and says this will take a few minutes, but regardless of how long I leave it (up to an hour on a

...

Remote Desktop and IPSec in the DMZ.

This is something we had enabled when we were using a Symantec SGS firewall, but had to disable it when we went to the PA-2050. I haven't had much time to play with it, but I need to get it working again. Under the local Group Policy of each server,

...

mharding by L4 Transporter
  • 2538 Views
  • 1 replies
  • 0 Likes
  • 24089 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels