This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4117 Views
  • 0 replies
  • 0 Likes

File Blocking not recognizing .docx or .xlsx files.

I just created a new file blocking profile and added xlsx, pdf, docx and multi-level-encoding. I set the action to alert. I want to monitor the found traffic prior to implementing a block rule. When I download a PDF file from the Internet, the vent is logged in the Monitor/Data Filtering. When I download a .docx or .xlsx file, it is not logged...

TI automation - Foundation: custom prototype and SOC integration [part 2]

Hi again, after good feedback received on the first post on MineMeld architecture and hardening I wrote a new post on how I built the foundation of near-real-time integration of MineMeld with our Information Security Operation Center (i-SOC) custom SPLUNK application. You can read the new post here Feedback welcome, tks Giovanni

soc_enav by L1 Bithead
  • 10947 Views
  • 2 replies
  • 6 Likes

Different data in ACC reports and custome created report

Helo Everybody,I have created a custom report in Panorama to generate the same data that we get in ACC - Application usage report, for last one month. But it looks like the data in the custom report is always different than that which is genereated in acc widget/report.

Pre-defined reports only useful for Last24 hours?

Hi,I wanted to use the pre-defined reports for a summary of the last 7 Days (or Last week) but as I see, these pre-defined reports only work for the last 24 hours / last day, even though I send the Email with all pre-defined reports only every sunday.Is there a possiblity to use the queries of the pre-defined reports for duration longer then 24 ...

Filter Policies by Target "Device-Tag" not possible with 9.1.x (Feature Request)

Hi,since we are changing policy targets from "device name" to "device tag" (device-Tag defined in Panorama > Summary), we still have the need to filter for special devices (device-tags) within the policy sets.But what I have seen with 9.1.6, filtering policies list by device tag is not possible.E.g.(target/devices/entry/@name eq '<device-t...

PAN Security Advisory (11-AUG-2021)

Thought I would just put this notice out since I know a lot of people don't actually subscribe to security advisories directly. If you haven't already, I highly recommend that you sign up for notifications via https://security.paloaltonetworks.com/ and the 'Subscribe' feature at the top right.As a general statement, you should ensure that you ar...

BPry by Cyber Elite
  • 3953 Views
  • 3 replies
  • 1 Likes

User id not fetching for same ip in traffic logs.

User id not fetching in traffic logs.we created user base rule on that basis mapped ip address shows user id for same rule .but some time user is not authenticated from that user base policy rule and it is moving from next any any rule. if it is moving from any any rule that time it is not showing user-id mapping.

SurajN by L2 Linker
  • 2056 Views
  • 1 replies
  • 0 Likes

Resolved! DNS external Global Protect

Good afternoon:I hope you can help me with this, thank you very much in advance.I have Global Protect configured as follows:GP: IP pool 172.16.11.0/24Split-tunnel Include: 192.100.11.0/24 ( Corporate LAN )DNS assigned Global Protect: 8.8.8.8.8 and 4.2.2.2.2Home LAN: 192.168.1.254 Gateway/DNS Home LAN: 192.168.1.254 The connection works and opera...

Metgatz by L4 Transporter
  • 7630 Views
  • 5 replies
  • 0 Likes

Multiple domains on PA

Hello , We have integrated already the AD ( 3 Servers for redundancy)The User id we are using is the default one which is on the PA FW The domain is abc.nl . The setup is working . Now we are building an entirely new domain called abc.es . migration may take time There is no trust and the forest is different . So is it possible to have two...

Possible to disable SSH CBC cipher and weak MAC hashing?

Hi, May I check if it is possible to disable SSH CBC cipher and weak MAC hashing on Palo Alto Firewall?If so, may I know how to do it. Had no luck searching for a solution online.Seems like there is no menu/config file (e.g. /etc/ssh/ssh_config) to edit such settings. This is with relation to Nessus vulnerability findings.Try to see how it can b...

boss82 by L0 Member
  • 16991 Views
  • 3 replies
  • 0 Likes

IPsec tunnel doesn't show IKE gateway selected from drop down list

Hi All, Hope you are doing good. I am running PA-8.1.0 on on VM and creating a tunnel with Cisco router. I completed all configuration on PA end. But when i go into ipsec tunnel, i can't see Ike gateway selected. I re-select it and then commit the changes but again go to ipsec tunnel, it still shows not selected. Is this related to any bug or s...

ankda18 by L0 Member
  • 7220 Views
  • 8 replies
  • 1 Likes

/dev/shm filling up after 10.0.6 firmware

TMPFS partition /dev/shm on the VM series PAN. Typically this is cleared on reboot but after upgrading to 10.0.6 its failed to clear the space on system reboot. We have looked at the other drives on the PAN are there seems to be no capacity issues other then the tmpfs /dev/shm location at 97%. Can you please confirm whether this is expected on l...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks