General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14503 Views
  • 1 replies
  • 4 Likes

Resolved! Open port

I need to create security rule and/or not to allow port 6965 to a device. Do I need both a NAT and security rule? Need to find out from vendor if port is TCP, UDP or both. I have PA-3020 running PAN-OS 8.0.13.

Asymmetric traffic and URL log retention

shown below is my log storage quota settings. My traffic logs can show past 16 days data but URL filtering logs has only past 8 days data. how can I ensure I store same log retention period for traffic and URL filtering? 

log db.PNG

Resolved! Minemeld with AWS Guard Duty Integration

Hi,

 

  I just went through the python extension install successfully of the Guard Duty miner for Minemeld.  It looks like it installed successfully, but after I restarted Minemeld I can't see anything.   I create a role for my Minemeld instance to h

...

Artman by L1 Bithead
  • 2112 Views
  • 2 replies
  • 0 Likes

Resolved! Active/Active Firewalls and Panorama Templates

So I'm trying to keep firewall configuration as much in Panorama as possible. With Active/Passive I can accomplish this with one template per firewall pair.

 

With an active/active firewall pair will I need a template stack to do this? One template per

...

tcasw86 by L2 Linker
  • 2074 Views
  • 1 replies
  • 0 Likes

Feed with mixed IP \ domains

I have an IoC that is a mixture of IP addresses and hostname\domains; what is the best way of handling this?

 

The processed output will be a mixture of PA firewalls and other non-PA systems so, to be absolutely sure I'd like to split them out.

 

The

...

apackard by L4 Transporter
  • 1431 Views
  • 1 replies
  • 0 Likes

Resolved! Email alert for Logs not generated in GUI

 

Currenlty we do not get email alert notification for logs being not generated on the PA.

We have configured email alert for system.

 

Is it possible to get the email alerts when PA stops generatingt the logs like traffic or system in gui?

MP18 by Cyber Elite
  • 1443 Views
  • 3 replies
  • 0 Likes

Import XML FW config from desktop to Panorama?

Scenario:

 

I have a new firewall out in the field, I'd like to put a basic configuration on the FW in the field including the Panorama server IP. I'd then like to log into Panorama and import the config from my desktop and then push the full config to

...

Panorama and firewall configuration synchronization

Hi!

 

Does anybody know, if Network or Device configuration is changed localy on the firewall, will that change will be seen in Panorama automatically? Will firewall synchronize localy config changes with Panorama?

For example. If I add new static route

...

mkopcic by L2 Linker
  • 2604 Views
  • 4 replies
  • 0 Likes

Resolved! email attachment

Hi community,

 

can anyone clear my following doubts.

  • I have a mail server behind my PA, i am not doing ssl for mailserver communications.
  • i have antivirus & wildfire profiles applied for inbound and outbound connections to this mail server.
  • what if i get
...

Learning center doesn´t work

 

Good Morning,

 

I´m training in PaloAlto 8 Essential and today page doesn´t work. I Attach the error

 

Server Error in  Application.

  The specified network name is no longer available

 

Please could you help me?

 

Thanks.

E418949 by L0 Member
  • 1465 Views
  • 1 replies
  • 0 Likes

I can't decryption some web-site

Hi Expert ,

 

I was found an issue about after that applied decryption policy such as just facebook site but when access facebook occurs htps site restriction   I don't have license URL and threat prevention  

 

 

Kindly please suggest to me.

 

Route daemon configuration load phase-1 aborted

Hello,

 

I am getting "Route daemon configuration load phase-1 aborted" alarms under type-'Routing' , severity as 'Informational' and event as 'routed-config-p1-abort'.

 

Why we have these alarms and what they're indicating? could someone provide details

...

Top Liked Authors