This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Empty "File URL" in "Data filtering"

Hi,

I applied the default "basic file blocking" profile to the policy that allows users to access the Internet.

In the "Data Filtering" monitor I can see few files being blocked (EXE files for example), but I can't see the full URL of that file (the "F

...

AMoretti by L1 Bithead
  • 2890 Views
  • 4 replies
  • 0 Likes

Resolved! "Error: Failed to connect to User-ID-Agent at x port 5007

we got this email aler from firewall that  user id agent failed to connect to x on port 5007

when i log on firewall i see user id agent is connected.

 

We are running version 8.0.9 on PA 5050.

 

how can i know the reason for disconnection on the firewall?

MP18 by Cyber Elite
  • 6543 Views
  • 4 replies
  • 0 Likes

Resolved! routing between 2 virtual router

hello,

i have a setup like the image below.

my goal is to allow internet throught interfaces 3 and 4 (i have a virtual router with these 2 interfaces, vr_l3) : this is working

i have an IPSEC tunnel on interface 1 (with another virtual router, vr1) to r

...

xxx.jpg

Resolved! dynamic address group in google cloud

has anyone used the dymanic address group objects in google cloud pan? is it supposed to pull all metadeta e.g. labels by itself. i am not seeing anything populated once i click the "Add March Criteria" button

josggf by L2 Linker
  • 2402 Views
  • 2 replies
  • 0 Likes

Resolved! File export issue

Hello,

 

Whenever I export security rules or NAT rules from the firewall in PDF/CSV format, the file is not properly displayed my software version is 9.0.4

example:-

 

clipboard_image_1.png

Resolved! Minemeld Feed Password OR api security

Hi we have used minemeld for some monthes and i figured out that i want to tighten the security even more.

The question that then arose was the posibility to generate an api key or an user based authentication for my output indicators

 

I don't know or

...

m1.PNG
m2.PNG
Kimwii by L1 Bithead
  • 29998 Views
  • 15 replies
  • 2 Likes

URL Access Error

Hi all,

I have setup MineMeld on a VM and it seems to be working correctly but, when I setup the EDL on a PAN firewall and test it, I get a "URL access error" message on the firewall

I have generated CA from Palo alto and i have created a certificate s

...

clipboard_image_0.png

Resolved! *Urgent* Global Protect.

Hi Team,

 

We require to download the Global protect VPN client updates on our repository. So that users can direct update their existing Global Protect Client VPN software when connected to LAN network.

Is there any way of downloading these updated ver

...

Panorama Unresponsive

Our client has noticed their Panorama VM becomes occasionally unresponsive after upgrade from 8.1.3 to 9.0.6.

 

Has anyone experienced this issue? Is there a known bug?

 

 

Source address of PBF Monitor heartbeat ICMPs

I have a Policy Based Forwarding related question.

 

If we have a PBF rule, with Monitoring enabled, and the "disable this rule if next-hop/monitor ip is unreachable" also enabled.

 

So Palo Alto sends ICMPs to the monitored IP address out of the egress

...

  • 24195 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks