General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2884 Views
  • 2 replies
  • 14 Likes

Resolved! prismacloud miss home region for oracle cloud

Hello, I'm trying to configure a Oracle Cloud Account in prismacloud. And I notice, the "Home Region" in "Edit Tenant Details" does not contains some regions, well at least eu-paris-1.

 

Since it's not available, I'm not able to successfully finish t

...

Excessively long useragent

I don't think the following bot useragent is acceptable:

 

Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from

...

chaeron by L0 Member
  • 1130 Views
  • 2 replies
  • 0 Likes

Block scanning from shodan

Hello,

 

Anyone have successfully block scanning from shodan.io?   www.shodan.io  ?

 

It looks like Checkpoint has written specific signature to block shodan scanning,  http://blog.checkpoint.com/2016/01/04/check-point-threat-alert-shodan/

 

-E

Best config to speed up HA failover

During the last PAN OS upgrade we had to failover between two firewalls in HA configuration. The failover time takes unusually amount of time during which the Internet access was unavailable. It took approximately 10-15 lost pings (to internet host)

...

Resolved! What cloud services are affected by CVE-2020-1982?

Dear Team,

 

When checking CVE-2020-1982 in Palo Alto Networks Security Advisories, we found the following text:

> These cloud services include Cortex Data Lake, the Customer Support Portal, and the Prisma Access infrastructure.
URL : https://security

...

Resolved! capturing ssl decrypted traffic

Hello group,

as I'm thinking that someone is doing nasty things in the SSL-traffic, I thought of decrypting the ssl, capture the decrypted packets and put the into wireshark to look at it.

Only I could not find a way of explicit tell the PA to capture

...

Resolved! Panorama plugin log(AWS&K8S) delay

Dear Team,

 

I linked Panorama to the VM firewall.

Of course, the Timezone was set the same for both devices. (asia/seoul)

 

However, if I check the plugin log (AWS&K8S) in real time on Panorama, I will only see logs from about 4 hours earlier than t

...

Millennium (mp)# について

はじめまして。

 

勉強用にpa820を購入しました

 

Millennium (mp)# と出てきたのですが、イメージの破損でしょうか?

 

どなたか解決方法を教えていただきたいです。

 

よろしくお願いします。

No Logs for DMZ zone

We have created a NAT policy to access the Server in the DMZ zone, we can able to successfully connect to the server from public network. But, we cannot see the traffic logs for the same. 

Resolved! How to configure gre over ipsec?

Hello 

 

For example, some implementations require multicast traffic to be encapsulated before IPSec encrypts it. If this is a requirement for your environment and the GRE tunnel and IPSec tunnel share the same IP address, Add GRE Encapsulation when yo

...

ZhouYu_0-1628158713548.png
ZhouYu_1-1628158764675.png
ZhouYu_2-1628158809447.png
ZhouYu by L2 Linker
  • 7852 Views
  • 7 replies
  • 0 Likes
  • 24016 Posts
  • 99 Subscriptions
Top Solution Authors