This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

MS-ISAC TAXII Feeds

Is anyone successfully consuming TAXII feeds from MS-ISAC, specifically, their feeds from taxii-pilot.cisecurity.org? The miner shows success and there are log entries for indicators, but there are no indicators in the counters or graphs.    

2021-06-24 08_21_01-Clipboard.png
2021-06-24 08_22_31-Clipboard.png
2021-06-24 08_21_59-Clipboard.png
ngagne by L1 Bithead
  • 8256 Views
  • 8 replies
  • 0 Likes

Google meet/ hangout Stun servers aged-out

We have noticed an issue especially with Google Meet/Hangout when we often get one way audio. I can see from the traffic logs that Stun servers are showing aged out and the application is stun. However it is using a non standard port 19303 I suspect this is the cause of the issue. How can I ensure the traffic is correctly identified and al...

Capture Portal 403 error

Hey Live Community,I'm working on a project to have two zones on a vwire (one trust, and one lab). In order to get to the lab zone from the trust zone, I've created rules to only allow authenticated users to go through, and I've created my capture portal in accordance to their vwire documentation:Configuring Captive Portal in V-Wire (with RADIU...

How to disable cortex xdr on home computer

Hi, cortex xdr was instaled on my computer and now i dont have acces to my network, i tried everything but i cant disable cortex. can somebody help me to disable and uninstall this program?

TilenG by L0 Member
  • 30663 Views
  • 2 replies
  • 0 Likes

How to identify long live session(s) ?

Hello, I am trying to identify those long live sessions on my firewall, I mean those session(s) that never ended for weeks at a time. This is what I found out so far. 1. I can't export the whole session log to perform offline analysis,2, I did not find anything related to session start time as filter under show session all filter.3. ACC will...

Reverse Proxy

Can the PaloAlto do reverse proxy like ISA can?If I have an internal web server hosting multiple sites how do I publish that through the PaloAlto?

CRL with no internet

Hello, I have a 440 with no internet access. I could not find documentation on the proper way to update the CRL when my firewall does have access to the internet. Thanks for any help that I might be able to get with this.

Resolved! App Identification and ALLOW rule - does this make any sense?

Attached is a screenshot of a rule that is ALLOW'ing ICMP, IKE, IPSEC, PING. Can someone explain why SSL is in the APPS SEEN list? I don't see where any of these applications have an implicit allow for SSL/443 trafffic yet if I read this right it is saying it sees SSL and more importantly allows it here because it hasn't narrowed it down to wh...

Resolved! NAT

Hi Team, Is there any way to get a history of when NAT oversubscription dropped packets/sessions? Or can I only get realtime data on that?

vij by L1 Bithead
  • 1881 Views
  • 1 replies
  • 0 Likes

Network blocking and detecting capabilities in case of similar abnormal symptoms traffic

Hello all,Hope you are doing well.Our customer who is using PA3220 experienced external public IP blockage due to abnormal symptoms traffic. Upon investigation, it was found that a test Linux server installed internally attempted SSH brute force attacks against an unspecified number of external public IPs. We would like to know if the PaloAl...

Resolved! Honeypot - block IPs

We are looking at creating a Honeypot Website. The idea is to set it up with a much more restricted vulnerability profile so when hackers are scanning for certain vulnerabilities in the low and informational category their IP is blocked. The question I have is whether this is a global block, as in that IP would be blocked from hitting any extern...

craymond by L4 Transporter
  • 2896 Views
  • 2 replies
  • 0 Likes

Dual ISP VPN failover with single VR

Hi All, looking for some assistance to configure VPN failover for DR/BCP. I've attached a basic diagram below Currently, static route monitoring is set up on the outside interfaces of the firewalls at Site A, so if upstream from Site A ISP 1 fails Site A will use Site A ISP 2 to start forwarding traffic out.From Site A we have two VPN tunnels bu...

Screenshot 2022-06-28 at 15.52.22.png
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks