General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Netflow Bug in PAN OS 10.1.4-h4 and earlier OS 10 versions

This post is more of a survey of anyone that may be experiencing the same issue. We have a case open with PA and they have identified a bug. The fix, as I'm told, is that it will be addressed in a future release but they couldn't say when or what release. I searched the Live Community forums and found the issue occurring in an older 10.x version...

User ID mapping from Exchange logs behind F5 loadbalancer

Hi , We are currently trying to solve an issue with User ID mapping on Exchange cluster. This cluster is sitting behind F5 WAF, and it is doing SNAT, therefore all request are coming from same IP. (IP of the WAF) This causes the User-IP binding to nonstop update and not reflect the reality. On F5 we have turned on the "X-Forwarded-For" he...

aber by L0 Member
  • 3511 Views
  • 3 replies
  • 0 Likes

Resolved! prismacloud miss home region for oracle cloud

Hello, I'm trying to configure a Oracle Cloud Account in prismacloud. And I notice, the "Home Region" in "Edit Tenant Details" does not contains some regions, well at least eu-paris-1. Since it's not available, I'm not able to successfully finish the configuration and I wonder if it's a bug, or is there a reason behind this. I don't know if ...

Excessively long useragent

I don't think the following bot useragent is acceptable: Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: [email protected] It is excessiv...

chaeron by L0 Member
  • 3922 Views
  • 2 replies
  • 0 Likes

Starting with Palo Alto Networks - What I wish I had known...

Beginnings are not always perfect. Whether you started your Palo Alto Networks journey years ago or just recently, tell us what you learned early on that you wish you had known before. If there was one thing, or maybe more, Live Community users would love to hear about it. Share your stories, your tips to help other users along the way. R...

live t-shirt.jpg
carnould by L4 Transporter
  • 33354 Views
  • 39 replies
  • 4 Likes

Just getting started, looking for "mentor-like advice"

Hello all--I'm a long time data person. I'm very good with native SQL, MS Access, MySQL, Tableau, PowerBI, R, and a novice with D3. So I understand how to use data very well. I have done some training in Network Technology and definitely understand the basics.If I wanted to get into the space of either: server monitoring for small clients, or r...

Resolved! About address object with FQDN and apply it to security policy.

If I have a FQDN "abc.com" that have two DNS records 10.0.0.1 and 10.0.0.2.Then I create a address object with FQDN type, and the value is "abc.com"When I use this object into security policy, how does it working? Does it become 10.0.0.1 or 10.0.0.2 ? or it will randomize according to catch?If a client connect to "abc.com", and the client's DNS...

neilwu by L2 Linker
  • 16549 Views
  • 5 replies
  • 0 Likes

Best config to speed up HA failover

During the last PAN OS upgrade we had to failover between two firewalls in HA configuration. The failover time takes unusually amount of time during which the Internet access was unavailable. It took approximately 10-15 lost pings (to internet host) for passive to become an active. We had opened a case with PAN support and our zoom meeting was d...

Resolved! What cloud services are affected by CVE-2020-1982?

Dear Team, When checking CVE-2020-1982 in Palo Alto Networks Security Advisories, we found the following text: > These cloud services include Cortex Data Lake, the Customer Support Portal, and the Prisma Access infrastructure.URL : https://security.paloaltonetworks.com/CVE-2020-1982 The above phrase includes CSP. So does this mean that ...

Resolved! capturing ssl decrypted traffic

Hello group,as I'm thinking that someone is doing nasty things in the SSL-traffic, I thought of decrypting the ssl, capture the decrypted packets and put the into wireshark to look at it.Only I could not find a way of explicit tell the PA to capture the decrypted traffic only.Is there someone out being able to help me with that topic?Thanks a lo...

Resolved! Panorama plugin log(AWS&K8S) delay

Dear Team, I linked Panorama to the VM firewall. Of course, the Timezone was set the same for both devices. (asia/seoul) However, if I check the plugin log (AWS&K8S) in real time on Panorama, I will only see logs from about 4 hours earlier than the actual work time. Has anyone experienced or solved this symptom? Please give me some a...

Resolved! Palo Alto PA-5220 - Data-plane traffic stops intermittently for 20-30 min

We have a PA-5220 which seems traffic through data-plane stops intermittently for 20-30 min comes back up by itself. The issue does not affect our management access as we are using the dedicated management interface which from what I understand it has its own resources separate from the data-plane. On the gateway, Intrazone communication does no...

Millennium (mp)# について

はじめまして。 勉強用にpa820を購入しました Millennium (mp)# と出てきたのですが、イメージの破損でしょうか? どなたか解決方法を教えていただきたいです。 よろしくお願いします。

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels