General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 291 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3626 Views
  • 2 replies
  • 14 Likes

SWIFT ISAC TAXII Feed

Hi guys

 

 

I’m’ just curious – SWIFT has offered recently for all members TAXII interface to poll IOCs via  https://taxii.swift.com/taxii

Feed is not open for everybody – each member must request access to it individually, so it’s not easy to test i

...

Resolved! Can Panorama managed devices be configured via the CLI?

Hey folks.

 

I'm adding a Panorama server into my infrastructure to enable zero touch SDWAN provisioning, and since I've never done Panorama before, I've got a question.

 

Can panorama managed devices be configured via the CLI?

 

The reason I ask this is t

...

darren_g by L4 Transporter
  • 3459 Views
  • 4 replies
  • 0 Likes

GlobalProtect IOS split tunnel routing incorrect traffic

PanOS 9.1.4, GP client 5.2.7-6. 

We have a split tunnel configuration with only 2 internal /32 addresses added to the access route include list. We regularly see traffic from GP clients destined for Internet IP addresses hit the Palo over the client t

...

Andy123B by L0 Member
  • 1943 Views
  • 1 replies
  • 0 Likes

Need assistance with fixing weak Ciphers via Panorama cli

Hi 

I wanted to update weak ciphers on a PA-VM using the document below, I wanted to apply the change via Panorama but I don't see the correct config to apply.

I have tried the following:

 

>set cli config-output-format set

#set template "template name" c

...

Amin2 by L2 Linker
  • 1596 Views
  • 1 replies
  • 0 Likes

Data filtering - email issue

Hello all,

 

i was configure data filtering and it works.

But i face problems with the mailing. 

When the the fw match pattern it blocks it, but the email stuck in outbox queue  , and the user can not send/receive other emails until the mail is deleted f

...

stef by L2 Linker
  • 1517 Views
  • 1 replies
  • 0 Likes

Resolved! PA 3050 web Gui access

I am working with PA-3050. I can log in using ssh, but i can not login via web Gui.

http/https service are enable though.

Can someone share some thoughts on how to proceed?

FIDELE by L1 Bithead
  • 2399 Views
  • 2 replies
  • 0 Likes

Different Actions for Security Rules

Hi Guys,

I would like to know what are the difference between the following actions in the security rules for PA.

1. Deny

2. Drop

3. Reset-client

4. Reset-server

5. Reset-both

Which of these are the most preferred to use? Is deny or drop action also resets

...

Nikko by L1 Bithead
  • 2719 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect with Active/Active HA

I'm having a hard time finding much, if any, documentation on this scenario.  I've tried a couple ways of doing it and they work, but I'm trying to figure out what the best way to do it while being as redundant as possible.

 

What I like the best so fa

...

SMB URL File Logging acheivable or not?

Hi Palo Alto Experts,

 

I want to know if we want to log SMB URL Blocked events then can we do in Palo Alto or not? Basically, the requirement is as below:

 

Example URL if typed by compromise system is: smb://www.example.com/fileshare/malware.exe

 

Right

...

Add network to address group via CLI?

I am trying to add a network to an address group via CLI on PAN OS 9.1.X

 

# set vsys vsys2 address-group XXXXXXXX static 108.61.41.0/24

 

Server error :  static '108.61.41.0/24' is not a valid reference

 

What is the valid syntax?

jsogla by L0 Member
  • 1624 Views
  • 1 replies
  • 0 Likes
  • 24181 Posts
  • 100 Subscriptions
Top Liked Authors
Labels