General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Stack override template with IP of none

I'm trying to use the same "interface" template for all of my locations.  Unfortunately not all locations have the same number of subinterfaces.  I'm trying to override subinterfaces that aren't needed at the stack level somehow so that they are push

...

MineMeld upgrade process from cloud

Hello!

 

We have MineMeld directly on our Autofocus web service, and it shows currently that it is on version 0.9.44.post1 (AF), and after doing some reading it seems that there are a few versions after that. I have seen a lot of posts and walk throu

...

mjanik01 by L1 Bithead
  • 1157 Views
  • 0 replies
  • 0 Likes

HA Setup

I have firewall in HA(A-P) mode.

If device priority is same on both , will there any delay in switching A-P role during failover activity ?

deepak12 by L3 Networker
  • 2134 Views
  • 4 replies
  • 0 Likes

How to know what output and processors to use?

Hello! Forgive me if this is too broad of a question, or something that i had overlooked, but i am still quite new to using MineMeld and i've ran into a few issues where i apparently had used the wrong processor or output node, and people have correc

...

mjanik01 by L1 Bithead
  • 1232 Views
  • 0 replies
  • 1 Likes

config on passive & pushing to active ?

Dear All,

 

As I have always been practicing to do the configuration and changes on the primary device and then it is its responsibility to push the configuration on the secondary device but as I have also been seeing people to do the configuration on

...

Gchander by L1 Bithead
  • 2611 Views
  • 3 replies
  • 0 Likes

PAN-SA-2019-0020 ... really?

Hello Paloalto Team

 

Last thursday you published the securityadvisory for a critical RCE vulnerability and today you notified the customers again with an "Action recommended" article here: https://live.paloaltonetworks.com/t5/Customer-Advisories/Actio

...

session end reason threat

 

We have vendor traffic coming to PA and session end reason is threat.

Under threat i can see the threat id number

They are lot of them

 

For easy way I have disabled the security profile vulner protection for that rule.

 

Need to confirm by doing this PA

...

MP18 by Cyber Elite
  • 4940 Views
  • 1 replies
  • 0 Likes

Threat log types

 

For threat logs in PA  i see below options

 

( subtype neq vulnerability ) and ( subtype neq spyware ) and ( subtype neq packet ) and ( subtype neq scan )

 

need to know if this makes sense ??

 

where vulnerability is part of vul protection scecurity prof

...

MP18 by Cyber Elite
  • 1866 Views
  • 1 replies
  • 0 Likes

Unable to get into maintenance mode

Hello All,

I was in the process of upgrading our firmware of our PA500 to 8.1 and when the device rebooted, it did not want to come back online.  Checked the startup and noticed I was getting this error message.  I did read online that it might be an

...

jsuttor by L0 Member
  • 2877 Views
  • 3 replies
  • 0 Likes

Critical system logs

Hello,

I'am planning to install a monitoring tool, and i need critical system logs generated by the PAN-device. Is there any docs that mention it?

Regards.

asia by L3 Networker
  • 5660 Views
  • 8 replies
  • 0 Likes

TAXII into Proofpoint TRAP - Minemeld Output

I am trying to integrate MineMeld and Proofpoint TRAP. It should be relatively simple and feel I am overlooking something.

 

The first step was easy. Create an output using stdlib.taxiiDataFeed.

Because this is the community edition auth is turned of

...

Romans6 by L1 Bithead
  • 1772 Views
  • 0 replies
  • 0 Likes