This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4135 Views
  • 0 replies
  • 0 Likes

Resolved! Double running Pan Agent - Precedence

Hello,We have Pan Agents running on 2 servers - querying against the same list of AD controllers. Is there a precedence that the PAN devices will utilize if the Pan Agent logs have 2 entries for the same IP - but not the same user - or none?For instance one Pan agent has a listing of "192.168.1.10 to _unknown_" and the second Pan Agent has "192...

MGoodnow by L4 Transporter
  • 2854 Views
  • 1 replies
  • 0 Likes

FTP Brute Force Attempt vulnerability protection

I enabled "FTP Brute Force Attempt" (ID 40001) vulnerability protection, but my FTP server logs are still filling up with unsuccessful brute force login attempts. I've tried "drop", "drop-all-packets", and "reset-both" but it doesn't seem to make any difference.For example, last night's ftp server log shows 810 unsuccessful login attempts within...

dbaumann by L1 Bithead
  • 7017 Views
  • 3 replies
  • 0 Likes

Resolved! PAN agent 3.1.1 connectivity problem

Hi All,I am using PA 2020 and running v3.1.2 with PAN agent v3.1.1. However, the PAN firewall cannot get the info from agent with below error. It capture from PAN agent log file.2010 05 26 15:08:37, New Connection(10.123.10.107:39564) Socket(652)2010 05 26 15:08:38, SSL read error in pan_host_agent_rcv_data -2-16-02010 05 26 15:08:38, Connection...

how do I get a pcap of threat on PANOS 3.0.x?

Dear manager.I trid to find command on PA using panos 3.0.8 for packet capture of threat but could not. and I couldn't find any information in this community.I wonder that threat pcap is being used only PANOS 3.1.x? or having a different command?Thank you.RegardsRoh.

ttongfly by L3 Networker
  • 2616 Views
  • 1 replies
  • 0 Likes

BGP authentication

I have an RFP with a requirement for BGP support RFC2385 MD5 signatures within BGPv4. Can PAN-OS 3.1.2 do this?

KatanaNZ by L3 Networker
  • 3333 Views
  • 3 replies
  • 0 Likes

server load balancing on PA-4020?

I'm working on a Data Center redesign. One design we are considering will require replacing a core switch which currently gives us the ability to load balance a few sets of systems (within a set, not across) by defining an outwardly facing IP that balances traffic to N "inside" servers. This balancing also allows for a weighted balance (ie Ser...

bhelman by L2 Linker
  • 2528 Views
  • 1 replies
  • 0 Likes

Windows EXE Data filter

Howdy,Quick question: Does anyone know how to filter on just Windows Executable (EXE) in the data filtering log? Thanks in advance!Ebowd

ebowd by Not applicable
  • 2588 Views
  • 1 replies
  • 0 Likes

Resolved! Brute force and scanning signatures

Box: PA-2020 (probably all)OS Version: PANOS-3.0.6 Hi! I have some questions and suggestions for the threat-ips part of the box. 1. Ability to view settings for scanning and brute force signatures. - What are the settings for these signatures? I cant find for instance how many attempts/ips/ports is needed for the signature to trigger. 2. Ability...

u2521 by Not applicable
  • 878462 Views
  • 13 replies
  • 1 Likes

PDF Summary Schedule

Hello,Could you provide details on how the Summary Schedule works. The reports work properly and email properly. They are sent at 4:00AM - and there seems to be no ability to modify that. Also I am unclear what time frame I am seeing in the report. For instance the custom PDF summary that is emailed to me this morning at 4:00AM has today's d...

MGoodnow by L4 Transporter
  • 4724 Views
  • 4 replies
  • 0 Likes

Missing Objects defined with Panorama in NAT Policy on device

Hello,I miss objects, which are defined with Panorama in NAT Policy configuration on the device.The Objects itself are there (marked green) and available in Security Policy but not in NAT Policy configuraton.Is there a way to get this working or do I have to create Objects twice (one time Panorama - other time on device)?Installed SW Version: ...

ttwict by L0 Member
  • 2692 Views
  • 1 replies
  • 0 Likes

APP vs URL

Despite the fact that I've blocked *.logmein.com and the logmein application, I'm still seeing traffic permitted to logmein.com. On inspecting the traffic log details, I can see that the traffic is being identified in 2 ways:06/21 13:07:59 THREAT url ssl block-url URL Default Severity: informational Category: Blocked sites URL: *.app03-10....

robert.b by L1 Bithead
  • 2830 Views
  • 1 replies
  • 0 Likes

Resolved! Spyware Download Tab

Setting up new PA2020. Have upgraded to 3.1.2. In looking at SpyWare profiles, I am not seeing a Download Tab. I only see a PhoneHome Protection and an Exception Tab. What am I missing?

Allowing a subnet complete internet access but logging their traffic

Hi ya'll,Background: We have a seperate Vlan that we call "Raw Internet" with no filtering. This is used by our helpdesk staff. Which means they have open access to Internet and nothing is being blocked.Currently we purchased Palo Alto and I was wondering what would be the best way to do this. Meaning, giving them full access to internet yet...

casdc1pa by Not applicable
  • 4045 Views
  • 2 replies
  • 0 Likes
  • 24340 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks