This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Minemeld Regex

I want to only use the url portion of this feed ignoring the protocol portion http://

 

https://ransomwaretracker.abuse.ch/downloads/LY_DS_URLBL.txt

 

My regex is below:

 

regex: ^(http:\/\/)(.*)
transform: \2

 

This works fine outside Minemeld as python rege

...

bokeke by L0 Member
  • 6193 Views
  • 3 replies
  • 0 Likes

Default deny logging question

I notice that if a connection comes in and does not hit any policy correctly I do not see the deny in the logs. I think this is because the default behavior of the intrazone-default  rule is not to log anything. Is there a down side to setting this t

...

dstjames by L2 Linker
  • 4558 Views
  • 4 replies
  • 0 Likes

Traps configuration for VDI PVS enviroment

Hi everyone,

 

We are trying to configure Traps for VDI enviroment and we are having issues with the new images created. The VDI enviroment is a non persistent one, and we are using PVS for VDI.

 

All clients are created from a Vdisk, so there is no Gold

...

Skype SIP 5061 port allow

Hi,

I have Skype for Business Edge server, it has DMZ private IP and translated to Public NAT IP. This IP should open TCP-5061 Port to Internet and we opened. It seems traffic is passing correctly. But in real, when i do telnet test, it's fail.

It's no

...

image.png
image.png

the new versions are not shown in the panorama gui

Hello community

 

When I have to update my panorama to a new version I go to the software tab and I press the button. Check now they do not show me the new versions I only see the version that is installed in the panorama.

 

Is there any solution to sh

...

Additional network interfaces Dell R630

Hi all,

 

We are going to buy a Dell R630 for running Palo Alto VM100.

 

As this box has only a few standard broadcom interfaces on board, which NIC card would you recommend to more network ports.

4 Gigabit ethernet ports is sufficient in our case.

 

Some p

...

Resolved! Block Category based on local group

 

INFO:
-Palo 3320 PanOS 8

 

GOALS:

I have list of users and groups in local palo database
I want to block SALES group to access porn sites but allow DIRECTOR group

 

QUESTIONS:

1. should I use subinterface

2. since director mac address can't be seen if using

...

2019-07-10 07_57_27-Window.png
nbctcp by L1 Bithead
  • 2670 Views
  • 2 replies
  • 0 Likes

Azure IP prefixes

Hi folks

 

I'm trying to get Minemeld to output a list of Azure IP prefixes related to specific services, and getting very mixed results.  My config so far:

 

Miner - built in 'azure.cloudIPs'

Processor - built in 'stdlib.aggregatorIPv4Generic'

Outpu

...

AggAccept.PNG
AggEmit.PNG

Resolved! minemeld-engine is hanging in STARTING state

I installed Minemeld on a fresh Ubuntu 16.04.6 LTS with the instructions "Manually Install MineMeld On Ubuntu Server 16.04"  but the minemeld-engine is hanging in STARTING state.  minemeld-engine.log shows a couple of directory not found messages for

...

Resolved! DPD palo-to-checkpoint vpn issue

I have a vpn tunnel from palo to checkpoint(peer side). Only one proxy id seems to be having issues intermittently. the other network engineer is asking me to shut off DPD on palo since checkpoint doesn't know how to process them. did anyone experien

...

PCNSA online proctored exam

Hi,

 


I want to take Palo Alto Networks Certified Network Security Administrator (PCNSA) exam. I studied by myself , and I'm not from any academy or customer . And I want to take the exam online at home . I signed up in pearson VUE site , but I don't k

...

PaloAlto.PNG
meisam by L0 Member
  • 4186 Views
  • 4 replies
  • 0 Likes

Resolved! Wildfire API Quota/Limits Question

Hello.

 

A couple questions about WildFire:

 

1) I read here that the quota for WildFire is 1000 submissions per day. Is there a way to increase that limit (i.e. pay for larger subscription)? I didn't see anything in the documentation that mentioned that

...

  • 23708 Posts
  • 103 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks