General Topics

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Enterprises are embracing AI to revolutionize their operations, but with innovation comes new cybersecurity challenges. That’s why you can’t miss Ignite on Tour!

This event is your gateway to exploring how AI is transforming cyber defenses. Join us

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

alert action or default(alert) - No logs seen

Hello ,

I have created an Antivirus Profile

The action i have set is Alert and not default(alert) . Similarly Wildfire Action in AV profile is also "Alert"

However when i see Threat Logs and filter by ( subtype eq virus ); i cant see any log

I

...

Resolved! Query for DNS Security

Hello,

In anti-spyware Palo Alto DNS security option, the default action was already on alert.

We don't have DNS Security License.

1. What should be the default action which I keep? Should I keep on alert or sinkhole?

2. If I keep the action on sinkhole

...

can we mitigate CVE-2021-3031 PAN-OS by restricting dataplane interfaces of NGFW

CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak)

Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series firewall

...

Uninstall traps without password

I need to uninstall traps but I forget the trap uninstall password(that is not default password)
what can I do now?

MS-Teams Update Security Policy Help

Hello all,

I'm trying to fine tune a security policy to allow MS-Teams to update; based on what I can see the logs, it seems to contact statics.teams.cdn.office.net for the update. I have created a single policy with that destination as a FQDN, all

...

Resolved! Alert action in Security profile

Hello ,

We are enabling Security features like Antivirus , Antispyware , Vulnerability protection , Filer blocking etc .

We want initially to monitor the traffuc

We are putting the action as " Alert " . Just wanted to confirm that it wont block anyth

...

how to check list of users of particular group who are connecting Global protect.

We want list of users of particular group who are connecting Global protect.

Reason behind this requirement is to get number of users from particular group who are connecting GP. So accordingly we can purchase the licence for 2FA from third party vend

...

Wildfire behaviour

We can not understand at all how Wildfire works.

We realised that WF detects files that have been downloaded and categorized as malware can continue to be downloaded for a long time, this behavior is not the expected, which indicates that once it is

...

Site maintenance/ Product Compliance space

Would somebody who is tasked with maintaining the Product Compliance space please contact me?

I need to have several "folders" added...

Thanks

Frank K

Resolved! Does changing MTU and multicast settings on an interface affect the active user data traffic?

I am adding another OSPF neighbor to a sub interface. This needs a change in MTU size. does this affect the user data traffic on this sub interface?

I am little worried about doing this during business hours but also at the same time, it is a urgent c

...

Resolved! failed panorama migration

hi

i attempted to migrate an HA pair to Panorama which went bad. I had only pushed to passive and when i tried to make it active, everything went down.

had to make the previously active firewall actve again, and load last save on passive to recover the

...

Resolved! How to see a specific incoming IP

Hello, I am new to Palo Alto Firewalls still learning. I as asked to see a specific IP that is attempting to connect to my FW. Can someone please point me in the direction to see an incoming IP? I see on the GUI "Monitoring" and "ACC" tabs. Is there

...

DNS Security scaling?

Hello,

We're looking at replacing some Fortinet and Juniper devices with PA's but can't find any details as to how many entries can be cached with the "DNS Security" feature.

I have a lab 220 I'm using but the output of the commands don't seem to sho

...

Slow ISP bandwidth through PA-3020

We upgraded to a 1gb/s internet connection from a 50mb/s on Friday. For some reason we are only seeing a max of maybe 250-300mb/s but in most cases we are at 175mb/s.

We have a PA-3020, with App-ID enabled and Threat. We did our research before upg

...

Resolved! Wildfire actions

Hi ,

i have 3 question for wildfire

1)If we define wildfire profile , and call that profile in a security rule , only that particular rule will be effective for wildfire analysis and not all the rules in the policy ?

2)Also , as a starting point , we

...

Discussions

🚀 Join us at Palo Alto Networks Headquarters for Ignite - November 14, 2024 🚀

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource