General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Tech Support File Contents

Hello, I tried to search online a lot but I could not find what exactly are the contents of tech support file are that we occassionaly download and send to tech support for support. Could someone please throw some light on what exact information is downloaded in tech support file?

psharma by L1 Bithead
  • 13003 Views
  • 8 replies
  • 0 Likes

Resolved! Monitoring internet connectivity

Is there an way to monitor if\when internet connectivity is lost on an interface on Palo 5220? We are trying to determine if our internet connection is going down occasionally (for just minute or less), but not finding anything on the Palo to indicate an internet bounce other than IPsec tunnels renegotiating. One thought was to set up probes f...

Jsytsma by L0 Member
  • 10032 Views
  • 2 replies
  • 0 Likes

Resolved! HAFNIUM targeting Exchange Servers with 0-day exploits

Hi all,Anyone have update relate to "HAFNIUM targeting Exchange Servers with 0-day exploits", I don't search any information relate to this nofication:https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/Our customer have ask me about this signature of PANw tHANKS,

ThomasX by L1 Bithead
  • 7772 Views
  • 4 replies
  • 0 Likes

GlobalProtect Agent blocks DNS requests

I have case open with Palo but was wondering if anyone can verify and get same result as I. I have 0.0.0.0/0 route towards tunnel.I have Primary and Secondary DNS servers configured in GP Gateway (Network Services tab). When I perform nslookup from Windows command prompt then reply comes only if request is sent towards either Primary or Secondar...

Resolved! Custom App ID

Hi Experts,We've created a new custom app ID (custom-sql) for the SQL server with the ports TCP/10001- TCP/10004 with the Parent app as 'mssql-db-base'. Below are the firewall rules we've in place and noticed the application is correctly classified as the parent app when checking in monitor logs but instead of the below rule, it's hitting deny r...

Identify if the Palo Alto IDS/IPS has a signature for a specific vulnerability based on the CVE

We been working with Palo Alto to identify a strategy to help identify if the Palo Alto IDS/IPS has a signature for a specific vulnerability based on the CVE number. We should roughly be able to support this use case, but there will be some limitations:We can verify that a signature has been downloaded to the Panorama, but NOT if it is applied t...

Panorama attempting to connect to dummy-iot.services-edge.paloaltonetworks.com

Following an upgrade to PAN-OS 10.0.3, Panorama began sending out alerts every 5 minutes: opaque: gRPC connection to dummy-iot.services-edge.paloaltonetworks.com:443 is broken We do not have the IoT Subscription, nor can I find anywhere that this is configured. The error itself is due to the URL not resolving, as it appears to be a placeholder....

Resolved! Minemeld-web FATAL (Ubuntu 18.04)

Hi Ive been having a sweaty couple of days trying to get this to work and I must say ubuntu is not my forte.Anyway this all started from Ubuntu update. We had 14.04 which had sudo vulnerability and I was tasked to update this OS.Only thing running on it was this Minemeld and ofcourse after update it broke. I think Ive finally got partly working...

LassiK by L1 Bithead
  • 4531 Views
  • 2 replies
  • 0 Likes

Management Plane high utlization

Hi guys, Im having a query regarding Packet buffer protection where after enabling it i can find that management plane cpu utilization reached from 7 to 80% im not sure what could cause it. So can some one refer me when does management plane reaches the high utilization and does enabling packet buffer protection cause this issue? Thanks

Multicast Access to External Stream

Looking for some info on getting multicast working through the Palo Alto. Current working with version 8.11 and previously accessed this iptv stream located externally via a tunnel. Now that hardware has changed, we need to find a way to access this external UDP video stream via the firewall. Went by the latest multicast article on the PA ntwks ...

Resolved! Our custom-app has impacted all SSL traffic

Hi Team, We have a client who do not have SSL decryption and has many third-party applications working over SSL on different ports other than 443. The client has a security requirement that all applications need to be categorized by Palo alto firewall, so they do not wish to use any service ports in the Service column field. Also, they do not w...

bambox by L1 Bithead
  • 4056 Views
  • 2 replies
  • 0 Likes

userID agent not connecting

5220(9.0.11) firewall connectes normally to local DC running userid agent, but I see this for a remote DC which also has the agent installed. The same remote DC is connected successfully to 850(9.0.11) firewall on remote site. Not sure what the issue is here. 03-10 07:24:16.210 -0800 Error: pan_ssl_conn_open(pan_ssl_utils.c:843): Error: Failed...

raji_toor by L4 Transporter
  • 3168 Views
  • 1 replies
  • 0 Likes

Config Audit

Hi Everyone - I wanted to pose this question to the folks out there that may be feeling the same as I do about the way the config audit feature works. It is supposed to be a simple way to do a diff on config changes/deletes. I have found that palo seems to insert simicolons and braces throwing off the reporting and making it less than optimal fo...

  • 24394 Posts
  • 123 Subscriptions
Top Solution Authors
Labels