General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Connection error in FS-ISAC Prototype

Hi all,

 

I'm trying to create a Minemeld miner to download FS-ISAC IOC feeds. I followed the configuration indicated in a previous post on this same topic (https://live.paloaltonetworks.com/t5/MineMeld-Discussions/Prototype-for-FS-ISAC/td-p/159162). H

...

err.jpg

Do I need a NAT for traffic to pass??

I have an SD-WAN device at my internet edge that will be doing the NATing for the network. This is so that the device can decide which of 3 ISPs to use to forward traffic. My Palo Altos sit behind this device and will do the firewalling and URL filte

...

F5 failover connected behind PA

We have two F5 devices configured as active standby behind PA. The issue is on failover F5 failover ARP table on the PA is not updated quickly enough for smooth transition. Is there a way to mitigate this problem and increase ARP update time for that

...

raji_toor by L4 Transporter
  • 2277 Views
  • 3 replies
  • 0 Likes

Resolved! Block rogue VPN

I am seeing this in my system logs.

 

IKE phase-1 negotiation is failed. Couldn't find configuration for IKE phase-1 request for peer IP 172.250.246.42[500].

 

How can I block this? I been a Cisco guy for a longtime and new to Palo Alto. On my old cisco

...

Panorama VM 8.1.5

Hi all,

 

just got this case, where the client shutdown the Panorama 8.1.5 for maintenance. But once reboot, and login to the device he will not see the ">". if he performs any commands there are outputs. But the prompt is missing. He reloaded the devi

...

Shadow by L1 Bithead
  • 2614 Views
  • 2 replies
  • 0 Likes

NTP synchronization issue

Hi Team,

 

The primary NTP server toward Microsoft NTP Server(172.27.35.111) and also Configured the Cisco router(172.27.9.253) as secondary NTP Server. All the Network device is synchronized with secondary NTP server (172.27.9.253 ) but paloalto firew

...

Resolved! Checking Report Status in Panorama

I have clicked on run now on  30 day custom report and  below is status

 

show report distributed-states reportid 6314

Last Updated Time : 2019/05/30 09:48:32
Current Report State : RUNNING
Cummulative Docs Processed : 15318545
----------------------------

...

MP18 by Cyber Elite
  • 3165 Views
  • 3 replies
  • 0 Likes

troubleshooting ipsec with dynamic side

Hello, everyone,

Currently I have the problem to build an IPSec tunnel between a PA200 (A) and a PA220 (B).
My one side A has a Telekom hybrid Internet connection (its a german product with LTE and cable connection) to a Speedport router. Thus only one

...

Re: Understanding on Panorama Templates

In an event of failure of this stand alone deployed Panorama box (log collection and device management) from where will the firewall gets the the templates(Networ & device settings) information since I dont see this information in the local Firewall

...

Sanssj by L2 Linker
  • 2212 Views
  • 1 replies
  • 0 Likes

TAXII or STIX contextual data

Hello

 

I've succcessfuly been using Minemeld for some time now and I'm looking to further implement it


We currently have TAXII output working to our SIEM, however it just outputs basic data

 

<stix:Indicators>
<stix:Indicator id="minemeld:indicator-f

...

Resolved! HOWTO Wanted : Trunked L3 intrerface with tagged VLAN's

Hi folks.

 

I need to configure a L3 iterface with a trunked conenction to my core switching infrastructure - twos eperate VLAN's on the one physical interface which MUST be seprate VLAN's, security zones and IP ranges.

 

I can't figure out if I'm mking

...

darren_g by L4 Transporter
  • 5972 Views
  • 4 replies
  • 0 Likes

o365 HTTPSConnectionPool Error

My MM version is 0.9.52

and VM Version Ubuntu,

 

o365 miner is not working. and erorr blow..

 

 

minemeld-engin.log 

 

why not connect?

 

 

Only endpoints.office.com not connect...

a.gif
b.gif
c.gif
yad2nus by L1 Bithead
  • 2225 Views
  • 2 replies
  • 0 Likes

Resolved! IPSec VPN throughput

Hi all,

I have a IPSec VPN between a PA200 and a PA220.

Now i'm transporting a file from the pa200 network via ftp through the side-to-side tunnel to the pa220 network. The connection between the PAs is a 300mbits synchronous connection.

 

The dataplane

...

Top Solution Authors
Top Liked Authors