General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Block file-sharing in ms-rdp

Hi Palo Alto community,

 

Hope all of you are doing well.

May I ask for assistance in blocking file-sharing in ms-rdp? here is the scenario:

1. User is connected to the globalprotect VPN
2. Vpn user uses ms-rdp to remote Virtual PC behind the firewall
3. W

...

Bug: 8.1.7/8.1.8 PA-5200 AUX Ports

Just FYI,

There is currently a bug within 8.1.7 and 8.1.8 that renders the AUX ports inoperable on the PA-5200 series, which depending on your configuration can cause issues. The Bug ID is PAN-105737 and it's been fixed in 9.*, but you might want to h

...

BPry by Cyber Elite
  • 8076 Views
  • 10 replies
  • 2 Likes

Resolved! Trying to trackdown O365-api-any-any.txt file for MineMeld

Hi All,

I am in the process of deploying MineMeld for O365 endpoints and I am completely stuck.

 

Following this article:

https://live.paloaltonetworks.com/t5/minemeld-articles/enable-access-to-office-365-with-minemeld-updated/ta-p/224148 I it mentions  

...

ccarter by L1 Bithead
  • 4442 Views
  • 3 replies
  • 0 Likes

Resolved! Disney+ domain being sinkholed as DNS tunneling domain

This morning I starting noticing that my threat logs are filling up with

sinkhole actions for the following

Suspicious DNS Query (search-api-disney.svcs.dssott.co)

Suspicious DNS Query (dssott.com)

 

 

Threat Type
spyware
Threat Name
DNS Tunneling Domain
ID
109
...

Resolved! Manage Traffic within two vsys

Hi,

 

How to route traffic between two vsys on same firewall? Currently when I am trying to put policy, I am not able to see required destination under security policy which belongs to other vsys on same firewall. Does it require some specific configur

...

Vikashh by L2 Linker
  • 3171 Views
  • 2 replies
  • 0 Likes

Custom report for phishing prevention

Is there a way to generate a custom report of users/sites that have entered credentials? I checked under the URL database but don't see a Credential Detected column there that I could pull in. Anyone have a method of generating a report from the phis

...

Internet service down

Dear All,

I was facing disconnection issue with our internet firewall, cannot ping to LAN interface, all services related to the LAN interface was down like internet connection, MPLS and DMZ Zone, once I reboot the firewall everything back normally an

...

Multi vsys license requirement

Hi,

 

I am using PA3200 firewalls and require multi vsys capability.

I need 4 vsys, so shall I need to purchase a license for 3 vsys only?

OR

A multivsys license can activate all supported vsys ?

 

Thanks.

shapath by L0 Member
  • 4575 Views
  • 3 replies
  • 0 Likes

small alternative for MineMeld in Azure

Hello everyone.

Created and configured an Azure Function, which download Azure DC and Office 365 IP addresses and store them in a storage account. Everything is running in Azure, but generated data can be used as external dynamic lists for PAN-OS.

Re

...

az_time_func
Jurijs by L0 Member
  • 3190 Views
  • 0 replies
  • 3 Likes

Unable to get proper report

Dear Team,

 

We are not getting proper report for Last calendar month using query builder i.e (zone.src eq VPN) and destination is any and report has generated from 17 April to 23rd April.
When use  query builder i.e (zone.src eq VPN) and  (zone.dst eq
...

  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels