General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

URL Filtering Whitelist

Hi,

 

We have a case that 1 user would like to access URL (example a.com) that is currently blocked in existing URL filtering profile.

 

We know we can allow this by

 

1. clone existing URL profile and add a.com into allow list or add it through custom URL

...

L1_ENG by L1 Bithead
  • 4757 Views
  • 4 replies
  • 0 Likes

Resolved! DNS sinkhole database view or test

We are finding that even domains configured as malware/c2 are not getting sinkholed.   I'm aware from other posts, that these are not the same database on the firewall.   

 

Why are these not persistent?  Why would you not flag on a DNS lookup that is

...

Sec101 by L4 Transporter
  • 6474 Views
  • 4 replies
  • 0 Likes

DNS proxy

Hello

In one of my subnets I'm using google 8.8.8.8 as DNS server (received via DHCP).

But only form one entry I want to provide my own FQDN and IP.

Could I use DNS proxy feature for this ? (enable DNS proxy with primary DNS server 8.8.8.8 and add stati

...

polak71 by L1 Bithead
  • 1742 Views
  • 1 replies
  • 0 Likes

NFS datastore change

Customer integrated NFS datastore with panorama to store logs.

 

Now they are planning to change old NFS data store with new NFS data store, But their concern is they want old NFS datastore logs to be retained in new NFS datastore after migration and t

...

SSL decryption troubleshooting

I am trying to get SSL Forward Proxy working properly, generally it seems to be OK but I have a site I have tested

 

is for the bank hsbc

 

that gives an error..

 

Certificate Error

There is an issue with the SSL certificate of the server you are trying to

...

HA traffic through Cisco Switch

Hi Team ,
Can we route HA traffic between two 3260 firewalls through cisco switch using L2 vlan.

 My requirement is to run firewalls in HA and devices will be in different buildings. Buildings are connected with dark fiber. As PAN dedicated HA ports ar

...

Resolved! Panorama Dynamic updates

Hello

I use Panorama to manage my firewalls, I configured Panorama for Dynamic updates (antivirus, Application & Threats) but, when I go to "Device Deployment / Dynamic updates", all versions are in middle of December 2019. When I "check now", I have

...

Resolved! Minemeld O365 doesn't have latest IPs

Seeing an issue using minemeld and O365 IPs and not having the same IPs that Microsoft is advertising that need to be allowed.  Is there any easy way to confirm what is there and and what isn't via minemeld?   I've been using for awhile but only now

...

drewdown by L4 Transporter
  • 9917 Views
  • 10 replies
  • 0 Likes

Resolved! 64-bit User-ID Agent Software

Hi,

The Installation instructions for the User-ID Agent software remind you to ensure you've downloaded the correct version of the software (32 or 64-bit).

However I can't find the 64 bit version of 8.1.10 anywhere, only of the Credential Agent. Anyone

...

VPN

Hi. who can help me this topic?

Person A must configure vpn with person B. Person A must configure two vpn connection and all data flow to vpn 1 node but if vpn node1 goes down, aoutomatic all traffic must flow through with node 2.

URAN_725 by L1 Bithead
  • 1989 Views
  • 1 replies
  • 0 Likes

Free space in /dev/md2 partition

Hello
We have a Firewall PaloAlto with free space 509MB in partition /dev/md2, and 609MB in partition dev/md5, actually we need to upgrade the PanOS since 7.1.18 to 8.1.12, and there are 5 PANOS to upgrade, so the information is keep in /dev/md5 but b

...

How to block Internet Explorer

I am trying to block Internet Explorer traffic going out to the internet from my internal users. I have decryption in place and followed this article: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEdCAK

I am seeing some w

...

Resolved! Block External Email

Hello -

Basically I would like to start blocking external email access from the internal network such as Yahoo Mail.  I don't want to block access to Yahoo itself, just inbound email from Yahoo and other sites like that.

 

Is there any documentation on

...

  • 23595 Posts
  • 103 Subscriptions
Top Solution Authors
Top Liked Authors
Labels