General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Need assistance with fixing weak Ciphers via Panorama cli

Hi 

I wanted to update weak ciphers on a PA-VM using the document below, I wanted to apply the change via Panorama but I don't see the correct config to apply.

I have tried the following:

 

>set cli config-output-format set

#set template "template name" c

...

Amin2 by L2 Linker
  • 1636 Views
  • 1 replies
  • 0 Likes

Data filtering - email issue

Hello all,

 

i was configure data filtering and it works.

But i face problems with the mailing. 

When the the fw match pattern it blocks it, but the email stuck in outbox queue  , and the user can not send/receive other emails until the mail is deleted f

...

stef by L2 Linker
  • 1608 Views
  • 1 replies
  • 0 Likes

Resolved! PA 3050 web Gui access

I am working with PA-3050. I can log in using ssh, but i can not login via web Gui.

http/https service are enable though.

Can someone share some thoughts on how to proceed?

FIDELE by L1 Bithead
  • 2621 Views
  • 2 replies
  • 0 Likes

Different Actions for Security Rules

Hi Guys,

I would like to know what are the difference between the following actions in the security rules for PA.

1. Deny

2. Drop

3. Reset-client

4. Reset-server

5. Reset-both

Which of these are the most preferred to use? Is deny or drop action also resets

...

Nikko by L1 Bithead
  • 2804 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect with Active/Active HA

I'm having a hard time finding much, if any, documentation on this scenario.  I've tried a couple ways of doing it and they work, but I'm trying to figure out what the best way to do it while being as redundant as possible.

 

What I like the best so fa

...

SMB URL File Logging acheivable or not?

Hi Palo Alto Experts,

 

I want to know if we want to log SMB URL Blocked events then can we do in Palo Alto or not? Basically, the requirement is as below:

 

Example URL if typed by compromise system is: smb://www.example.com/fileshare/malware.exe

 

Right

...

Add network to address group via CLI?

I am trying to add a network to an address group via CLI on PAN OS 9.1.X

 

# set vsys vsys2 address-group XXXXXXXX static 108.61.41.0/24

 

Server error :  static '108.61.41.0/24' is not a valid reference

 

What is the valid syntax?

jsogla by L0 Member
  • 1712 Views
  • 1 replies
  • 0 Likes

Outside interface listening on HTTPS "502 Bad Gateway"

I have this odd issue whereas one of HA Pairs seems to be listening on 443 on its outside interface for GP but I don't use GP and never had.  I have a interface profile that allows HTTPS but not from any IP and when I disable that it still shows that

...

drewdown_0-1612816320888.png
drewdown by L4 Transporter
  • 2343 Views
  • 2 replies
  • 0 Likes

Issue with proofpoint emerging threats

Hi All,

I am testing minemeld with proofpoint emerging threats service.

I am having issues with the miner because the categories are not set correctly.

I think that the miner reaches for a csv file available to proofpoint subscribers that contains ip,ca

...

Resolved! Is JSON Based URL is configurable in Security Policy as EDL.

Hi Team,

 

Please confirm us can we configure JSON based URL as a EDL in Security policy on Palo Alto Firewall.

 

Herewith, I have provided you with the sample JSON Website for your reference. Please refer and share us with your valuable inputs.

 

https://

...

SahulH_0-1613372205367.png
SahulH by L3 Networker
  • 5675 Views
  • 3 replies
  • 0 Likes

URL wildcard Pattern

Hello everyone, I need to block URLs that have a word pattern/string, It is possible to restrict certain strings inside the name of a URL?? for example the word "good" inside the website "www.goodwill.com" to be blocked ? I already try with Wildcards

...

  • 24107 Posts
  • 102 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels