General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 619 Views
  • 0 replies
  • 0 Likes

wildfire logs showing allow action for malicious url

Two wildifire logs (16 July and 20 July )  are showing for same url with malicious verdict and action is allow. We have checked wildfire report of both logs , all information is same (same hash value , first timestamp seen is 7 July etc. ).

If same ur

...

Deepak_K by L3 Networker
  • 2086 Views
  • 1 replies
  • 0 Likes

How to configure HIP.

Hi team,

 

++ I want to configure HIP- Anti Malware with virus definition version.

++ I see in HIP log for Definition version as 200729-4 but I am not able to configure the same in Virus definition option in HIP anti malware.

++ I am not able to use any

...

Hip.jpg

Block all SSH outbound

For a home user who uses VPN to access internal network, how can we block all his SSH outbound connection to internet?

Ivy_Vo by L1 Bithead
  • 5674 Views
  • 9 replies
  • 0 Likes

IPS is not detecting threats

Palo Alto has recently released signature for CVE-2020-3452. however when performing a POC, I cannot detect any threat. I am using link available to public use - 

 

https://<domain>/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.

...

Shafaqat by L0 Member
  • 2193 Views
  • 1 replies
  • 0 Likes

Bypass video traffic exclusion

Hello,

 

We have GP set up and one of the settings include "Exclude video traffic from the tunnel". However, we have come across an issue that private site for developers hosted in 10.0.0.0/8 network includes internally hosted videos (http-video app-id

...

kalolu by L1 Bithead
  • 2869 Views
  • 1 replies
  • 0 Likes

Virus/Win32.WGeneric.akbori |

1) Why is this virus triggering in Palo Alto events and Palo detecting this & alerting ?

2) How hashes are different, is there false positive.

 

DetailsSourceMD5SHA-1SHA-256Virus/Win32.WGeneric.akbori(345886398)Paloaltoce27d52c7d1f59ad2c867e97339fa2122d...

Resolved! Students, using HTTPS now on Proxies

Hi,

we have banned the http-proxy in school to stop them downloading and accessing sites they shouldn't, however they have now found using https based proxies bypasses this.

What is my next possible solution in my ever on going war with students.

Any

...

djbisbey by Not applicable
  • 11263 Views
  • 19 replies
  • 0 Likes
  • 23939 Posts
  • 113 Subscriptions
Top Liked Authors
Labels