General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

JawinaBug Command and Control Traffic Detection(85599)

Could you guys please throw some light on "JawinaBug Command and Control Traffic Detection(85599)", there is no information related to could you guys please throw some light on "JawinaBug Command and Control Traffic Detection(85599)", there is no information related to JawinaBug at allWhat triggers this signature, what are the IOCs?, Please help...

Lalitb by L0 Member
  • 2880 Views
  • 2 replies
  • 0 Likes

Identifying iPad App Traffic

Greetings I have a PA-220 Running Version 8.1.9-h4 Current problem is that some teachers use iPads and some of them use an app called SEESAW.The app loads fine on the iPad but seem to be blocked from the cloud resources it should have access to.Using it on Mobile data everything loads fine.Using it through the Firewall I eventually get a message...

an issue occure with asymmetric route

HI; I have PaloAlto FW and I have 3 ISPs and I'm using default route ( statically ) with this value ISP1 distance 5 ( Interface X), ISP2 distance 9 and ISP3 distance 15 ( Interface Y) and I've server with NAT IP using ISP3 subnet.the server is reachable from global internet but the users who are using ISP3 they are unable to reach it after some ...

Block Tubemate app (Youtube Downloader)

Hello guys, Is there any way to block TubeMate application which is used for downloading videos from youtube?It also uses youtube base application. NOTE - I want to keep YouTube open. Please suggest ! Thank you in advance. Mayur Sutare

Resolved! Global protect firewall behavior after reaching max users

Hello Community, Looking for more details on firewall behavior after reaching max-users limit on Global protect. For example, Assume a portal with 4 gateways in different regions. If one of the gateway(Lets assume PA-3020) which has capacity of 1024 concurrent connections, reached its maximum limit. what will happen if user 1025 tries to reach ...

SuryaR by L3 Networker
  • 10486 Views
  • 4 replies
  • 0 Likes

captive portal questions

hello,i need to authenticate users who are using workstations which are not in my windows domain.captive portal with local users is working. but if i create users in my windows domain and try to authenticate them with an ldap profile, it's not working.captive portal authenticate them (command "show user ip-user-mapping all" shows my users) but r...

reachability issue to PA FW interface vlan

there is high-available Paloalto fw PAN-OS 9.0.3-h3 connected to the same switch witch aggregate ethernet interface. interface VLANs created and on the firewall with ip address 10.1.1.1/24 to work as GW for some servers and other interface VLAN as GW for users with ip address 10.1.2.1/24. all thing was working fine and a change was required to m...

Resolved! Where does User Credential Detection search?

I have just turned this on and it's coming up with some really useful (and quite scary) alerts but in a few cases, the URL it is flagging up is pretty innocuous and doesn't include anything resembling the user name or password, so what is it matching on? Is it possibly searching cookie content as well? In an example I have followed up, the URL ...

djr by L4 Transporter
  • 4322 Views
  • 2 replies
  • 0 Likes

Resolved! Virtual System Resource allocation

Hi Team, We would like to know how can we allocate the CPU resources for Virtual system (Vsys) on a Firewall. Please share your thoughts !! Awaiting for a response. Thanks in advance !! Best Regards,Sahul Hameed

SahulH by L3 Networker
  • 8333 Views
  • 4 replies
  • 0 Likes

Failover Behaviors

Hi All, Setup: Active-PassivePath Monitoring: enabled, but not configured(nothing under that Path group)Version: 7.1.14 Would an Active firewall change its state to non-functional if both of its HA2/HA-Backup goes down? Related Logs:2019/12/04 09:41:04 critical ha ha2-lin 0 All HA2 links down2019/12/04 09:41:04 high ha session 0 HA Group 1: Ign...

Application Dependency Warnings after 8.1.12 upgrade

Hi all, I just upgraded all the firewalls from 8.1.7 to 8.1.12 to patch some vulnerabilities. After the upgrade, I am suddenly getting a bunch of application dependency warnings which I commit the configuration from Panorama. The configuration hasn't changed. The warnings are legit - but they weren't displayed before. Does anyone know why t...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels