General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! wildfire questions

Hi All,

 

I recently started applying wildfire profiles for most of my traffic to public cloud on all applications. This includes some senitive information for eg: user trying to print out a document that has some sensitive details.

I know wildfire prov

...

MS Update ActiveX Cab file Denied?

Hello.

 

I just reloaded a Windows 7 x64 computer.  The first check wants to update the Windows update agent.

For some reason PA blocks it as a ActiveX Cab file.

The first check allows, but the it's denied. (picture attached).

I added a Virus exception fo

...

pa1272018a.JPG
catrock by L2 Linker
  • 2584 Views
  • 3 replies
  • 0 Likes

Resolved! Teamviewer and Commit warning

We have to allow only Teamviewer on some pc's, not internet browsing.

I created rule with apps:
teamviewer (apps-group)
teamviewer-web
adobe-flash-socketpolicy-server, ssl, web-browsing

But this rule will allow web-access to all sites.

Ok, i created custom

...

aaobuhov by L2 Linker
  • 3008 Views
  • 3 replies
  • 0 Likes

DLP Options

Im exploring some various DLP options for one of my clients. Im niot finding much in regards to DLP functionality on Palo Altos (I have a pair of 3020's) 

Does anyone know what Palo Altos DLP solutions consist of? If any?

Im primarily concerned with th

...

Resolved! revert configuration automatically

I had a situation where checking log at start session box in a security policy while troubleshooting, after 2 minutes to commit changes, I lost comunication with the fw, because data plane get 100%. I would like to know if there is a commit revert co

...

Marivi by L3 Networker
  • 1961 Views
  • 1 replies
  • 0 Likes

useful custom reports

Hey all,

I want to create some custom reports to get more useful information about what is going on in my network.

I would like to know - just informational - which reports do you use in your daily business?

Respectively which reports you consider as us

...

MPI-AE by L4 Transporter
  • 4012 Views
  • 21 replies
  • 0 Likes

Where is the BPA tool located??

I want to run BPA reports against my configs but I can't find the tool anywhere???

 

I know it exists as I have a Initial Analysis from our 3rd party supplier, but I would prefere to cut them out of the loop.

 

Any ideas?

 

Cheers

 

Rob

Resolved! Getting Started with Best Practices Templates

Hi 2 all

 

I am trying to create best practice for Vulnerability Protection and Anti-Spyware Profile with extended packet capture as desribed in

https://www.paloaltonetworks.com/documentation/81/best-practices/best-practices-internet-gateway/best-practi

...

aaobuhov by L2 Linker
  • 2302 Views
  • 3 replies
  • 0 Likes

Resolved! /opt/panrepo

Hello,

someone know for What is used this partition? /opt/panrepo

Marivi by L3 Networker
  • 3409 Views
  • 2 replies
  • 0 Likes

Dynamic group from panorama.Vm info source

Hi,

We realised that vcenter fields are not being updated when we create a dynamic address group in panorama. From the fw is working fine and values are refreshed in real time. The method we use to monitor vcenter is VM information source.
So we dont k...

BigPalo by L4 Transporter
  • 807 Views
  • 0 replies
  • 0 Likes

PVLAN with Palo Alto?

I'm looking at doing some re-design for our DC networks and wanted to investigate some further segmentation.  Since we aren't really large enough for NSX or ACI I wanted to look at PVLAN.

 

I've got some Nexus9K switches with Layer 3 licensing in HA an

...

jsalmans by L4 Transporter
  • 2919 Views
  • 5 replies
  • 0 Likes

Resolved! IKE v2 ASA vs. PA

Hi together,

 

at the beginning of this week I ran into the following challenge.

 

I’ve to setup an IKE v2 Tunnel between a Cisco ASA and a PA-850 running on 8.0.12.

During the configuration the Cisco Partner send me the local and remote tunnel pre-shared

...

sstein by L1 Bithead
  • 15399 Views
  • 4 replies
  • 0 Likes

Resolved! PAN-OS 8.1 User-ID problems

Hi there,

I have some problems with a user-id installation on PAN-OS 8.1.4, scenario:

1) Windows AD Domain Forest, with around 6/7 domains

2) I'm only interested in authenticating users from one of the domains in the forest

3) I've correctly connected th

...

Top Solution Authors
Top Liked Authors