General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Join Us for a Tech Deep Dive Miniseries!

 

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.

 

Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real

...

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 387 Views
  • 3 replies
  • 1 Likes

Resolved! Zone protection show wrong severity

We are doing a lab and making test attacks and see if the PA can detect them, we have an interface in tap mode and it is doing the span, we did all the configurations in a PA-200 but when we lunch brute force attacks or sql injection,  the logs shown

...

RCastro by L1 Bithead
  • 923 Views
  • 3 replies
  • 0 Likes

Dynamic NAT

We are moving NAT from the routers to the firewall (5050), the routers do not release the session's efficiently so we are constantly running out of IP's in the pool. Is there a rule of thumb for the number of IP's to sessions on a PAN 5050? We run at

...

GFN182 by L2 Linker
  • 752 Views
  • 2 replies
  • 0 Likes

Best Practices of log filter

Hello,

 

 

As a network admin, when user escalates that he cannot access some specify website, what's the best way to find the property log which was triggered by use's browsing activity?

 

Of course we can apply filer as "username", but even though, we w

...

qd_056 by L2 Linker
  • 1653 Views
  • 5 replies
  • 0 Likes

Log forwarding, filtering and auto tag

Hi there

 

I've played with this feature for a while on my own FW, but must be doing something wrong. I'm adding the log forwarding profile, and when checking the filter I make, I get many log lines. But I don't get any output in the DAG. I've tried wi

...

gtomte by L3 Networker
  • 2754 Views
  • 5 replies
  • 0 Likes

PAN OS 8 displaying multipe threat/anti virus versions

Hey folks.

 

I don't know if this is intentional or not, but it's annoying as hell, and if it's configurable, I'd like to know hwo to fix it.

 

Since upgrading to Pan OS 8 on one of my PA's (a 500), I've noticed that when I check for dynamic updates, I g

...

threat_display.jpg
darren.g by L4 Transporter
  • 1052 Views
  • 3 replies
  • 0 Likes

CLI commands for Palo Alto configuration

Hi,

 

Are there any CLI commands which we can use to assess all the checks listed in the CIS Palo Alto Firewall 7 Benchmark?

 For Example:

Check : Ensure 'Minimum Password Complexity' is enabled

 

Navigate to Device > Setup > Management > Minimum Password

...

Arti_K by L1 Bithead
  • 2461 Views
  • 5 replies
  • 0 Likes

Integrating Minemeld with TheMediaTrust

There is a current miner prototype for themediatrust, and the comment from the .yml file indicate that you need a valid TMT DTI API Key to use this Miner.   How do you configure this DTI Key in the Config section from the New Local Protoype page?

 

 

Th

...

jcornell by L0 Member
  • 1157 Views
  • 1 replies
  • 0 Likes

Palo Alto and Cisco ISE packet issues

Hi 

 

ive got an issue when a user connects on our VPN using the global protect client the connection will take nearly a minute to connect and in the backgroup create several failures on our Cisco ISE RADIUS server, before finally let the user connect.

...

Resolved! SSL decryption alert or log

Hi

 

We use SSL decryption and from time to time we have issue with web sites and apps not working because we are decrypting their traffic.

 

If its a web site that doesnt like ssl decryption most of the time the end user will get the relevant response p

...

Top Liked Authors