General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 857 Views
  • 1 replies
  • 8 Likes

Palo Alto Agentless User-Ip mapping Not Working

Hi Folks, 

 

Need urgent help on an issue where " PAN Box Integrated with AD as an LDAP entity for USER-IP Mapping. So when User switches from LAN --> WiFi or WiFi --> LAN different IP Subnet, user-ip mapping don't change instantaneously" because of th

...

Resolved! Threat Prevention - IPS features

Hi, 

 

Can we enable IPS features on a particular sub-interface/zone in Palo alto so that it gets applied to all traffic that enters through that particular sub-interface? 

 

 

From the little reading which i did, i am seeing it as configuring it in secur

...

MGRashmi by L2 Linker
  • 3345 Views
  • 4 replies
  • 0 Likes

Resolved! Aperture working/basic, how aperture policy works

I started with aperture and document mentioned "Aperture compares your user defined aperture policies to the data content and context to calculatre any policy violations"

 

I understood

Conext = data exposure

Content = Data patterns inside the acutal fil

...

IPSec VPN not working before phase 2 negotiation

Hello,

 

I made an VPN Tunnel between paloalto and fortigate(3 tunnels).

 

Every config is same between them. 2 of them work well but 1 tunnel has an issue.

 

About 3 mins before phase 2 negotiation(by lifetime or other reason), traffics can't go through t

...

yhlee1 by L2 Linker
  • 4287 Views
  • 7 replies
  • 0 Likes

MM_CONFIG_DIR and side-loading of credentials

Is the MM_CONFIG_DIR pre-set?   I used my admittedly limited Ubuntu knowledge to check inside the engine process and it doesn't appear to be there.    I see the variable used in many/all miners for storage of password and client certificates.

 

os.e

...

Minemeld TAXII ISAC

Hi all,

 

I have the way to get feeds from ISAC with a TAXII prototype and I want to share with you all. Proabably it can help someone.

 

Firstly it's necessary to import the minemeld-taxii-ng extension on system>extensions and install extension from git

...

isac_example.JPG
Xavi_Gil by L0 Member
  • 5603 Views
  • 1 replies
  • 3 Likes

Resolved! How to enable API access for Minemeld

I have been working on syncing a manual localDB miner list via this Python script (https://gist.github.com/jtschichold/95f3906566b18b50cf2e3e1a44f1e785)  When I use it, I get 'Unauthorized' when trying to access /status/minemeld.  If I manually authe

...

hbiglin by L0 Member
  • 6226 Views
  • 4 replies
  • 0 Likes

Why do i need to link a VR to a Vsys?

Hi all,

 

I'm using a PA-3020 device configured with multiple Vsys and when creating a Vsys I have the ability to assign a specific VR.

From my understanding, the connection between a Vsys to a VR is based on the Vsys connected interfaces to the VR much

...

Resolved! wlc monility and EoIp traffic

Hello All,

 

I have WLC and anchor-WLC with PA firewall in between, I have rule allowing EoIP and wlc-mobility APPs with application-default service selected, I don't see on monitor tab any single packet logged, even though I know for sure it is there,

...

evdanil by L1 Bithead
  • 4612 Views
  • 4 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors