This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 778 Views
  • 0 replies
  • 0 Likes

Minemeld MISP miner needs a revisit

Hi guys,

 

I believe the MISP miner for Minemeld needs a re-visit. None of the tagged indicators are being pulled by Minemeld from our MISP instance. I think there are a lot of changes to the current API as compared to the ones used by the current mine

...

vedd3r by L2 Linker
  • 2709 Views
  • 1 replies
  • 1 Likes
Community Expert Verified
Community Expert Verified

Resolved! Logging for deny/drop policy

Hi Team,

 

what is the recommended/ best practice logging option for policies with action set as deny/drop? is it "log at session end" or "log at session start"?

  

Query on file blocking profile.

Hi,

 

Can we achieve the following points,

 

1.Required only our office  domain user can able to access upload/download file
2.Hotmail user can only access for downloading / uploading block
3.Another domain user (Guest user) only downloading the file uploa

...

Bad Gateway error

Hello All,

 

I installed minemeld on aws instance, when I am trying to logging getting "Error checking credential: bad gateway". I checked Minemeld services and getting error as :

 

minemeld-engine                  FATAL     Exited too quickly (process l

...

sam2016 by L0 Member
  • 20412 Views
  • 9 replies
  • 0 Likes

Resolved! Open-vpn client for Globalprotect

I have a consultant who is asking if the Global Protect VPN would connect with an OpenVPN-based client?  I suspect he is working from a Linux PC.

does Palo support it?

Best Practices for acquisition

Hi Guys,

 

Our company has recently made several acquisitions. All of them have non-palo alto firewalls. We will be migrating each of non-palo firewalls to our palos.

Now, for migrating the rules, we are using expedition. 

But, some of them have overlapp

...

Resolved! Stripping prepended URL info

Does MM have the ability to remove HTTP://  and/or  HTTPS://  from a list of URL's before creating the output file for EDL?

kwall00 by L4 Transporter
  • 7274 Views
  • 4 replies
  • 0 Likes

PaloAlto and DNS

I have PAN running version 8.1.17 and it is configured with two DNS servers on the management interface, you know the usual, nothing special.  I have security and NAT rule on the PAN firewall the uses FQDN. 

 

Is there a way to detect when the PAN fail

...

dtran by L4 Transporter
  • 4482 Views
  • 5 replies
  • 0 Likes

Resolved! Mass creating local-db users from CLI

Hi Community,


We wish to add a batch of users to the local database, I'm just wondering if anyone has had experience with scripting this or doing this in batch.

 

With the command "set shared local-user-database user testuser" it requires separate user

...

Panorama via S2S VPN

Hi everyone,

 

We have our PA Firewalls in different countries all around the globe.

Lets call them Country1, Country2. Country3 and so on.

All locations are connected to each other via S2S VPN.

We have Panorama in location Country1. And it manages firewa

...

Active/Passive HA direct link between firewalls

Hi All,

 

I use PA-220's in HA pairs often, and I've always used a straight-through cable to connect port 7 and 8 from FW1 to port 7 and 8 on FW2. I've never had ANY issues with this configuration. 

 

I just learned that PAN says to use a crossover cable

...

  • 23986 Posts
  • 115 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks