General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 251 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3562 Views
  • 2 replies
  • 14 Likes

"source user" empty in monitor log

I'm looking at an old version 7 PA3000 which uses a user-id agent to map users (active directory) to IP addresses.

When i log onto the firewall CLI  a "show user ip-user-mapping-mp all" command returns what looks to be a valid list of user mappings. 

...

Resolved! Questions about deploying serverfarm FW

Hello,

Currently, every server is behind trust zone, so I can't control traffic from trust user or server to server by FW.

 

I have two options

 1 attach server farm switch to edge firewall

 2 deploy new FW in front of server farm switch

 

Which is more com

...

yhlee1 by L2 Linker
  • 2091 Views
  • 1 replies
  • 0 Likes

Disable Cipher Suite

As of the pen test via SSL LAB  i was observed that less secure ciphers like DES, RC4 were supported by global protect portal ,so that i have disable the all the weak cipher suite and it's successfully done but the when i disable CBC-256 Suite when i

...

Joshan_Lakhani_0-1596646238785.png

Strange behaviour of HA pair active passive

Today i've noticed a strange behaviour of HA pair of Pa820 (panos 8.1.6) in Active passive configuration.

In the dashboard page i've noticed the running config not in sync with peer.

So i checked the differences with the diff button and i discovered th

...

Clip.jpg
Clip_3.jpg
Clip_4.jpg
Padmin7 by L0 Member
  • 2318 Views
  • 2 replies
  • 0 Likes

Resolved! DOS profile for critical servers

Hi Guys,

 

I want to create the DOS profile for critical servers. I read that I can use classified type so connection count toward only one IP address.

My question is can I add multiple servers IPs in same DOS Rule or I need to create multiple DOS rules

...

shafi021 by L2 Linker
  • 3183 Views
  • 3 replies
  • 0 Likes

Have you heard of the Cyber Elite?

In case you missed it, the LIVEcommunity team has just introduced the LIVEcommunity Cyber Elite program.

 

What is the Cyber Elite program you ask? 

This is a program that we have helped create to recognize the Expert members of the LIVEcommunity. 

...

pan_live-community_cyber-elite_v3.png
jdelio by L7 Applicator
  • 5085 Views
  • 3 replies
  • 11 Likes

HL7 Traffic / Unknown-TCP traffic gets denied.

We are standing up some new PA firewalls and have been testing with some HL7 servers.  Testing has been going well until recently where "unknown-tcp" traffic gets denied.  It seems that it only happens when the transfer of a specific file/message is

...

rkoenig by L3 Networker
  • 9617 Views
  • 11 replies
  • 0 Likes
  • 24169 Posts
  • 100 Subscriptions
Labels