This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4473 Views
  • 0 replies
  • 0 Likes

WhatsApp and Minemeld

Hello, It seems that Facebook allows again customer to easily access network requirement for WhatsApp (https://developers.facebook.com/docs/whatsapp/guides/network-requirements/) such as Ports, Protocols and IP Addresses. The IP Addresses are stored in a ZIP file behind an URL. I'm not an expert nor a beginner to develop a miner to exploit t...

Management of a multi-VSYS firewall from Panorama

Hello friends, I have been tasked to deploy a multi-VSYS PA and to manage it from Panorama, honestly this is the first time that I do this so I'm reaching out to you in order to guide me in the most siple way to achieve this. The way I'm planning this is: 1. Enable multi-VSYS funcionality (I guess that by default VSYS1 should be created automati...

Resolved! Minemeld Regex Syntax Issue

Hi Everyone, I am having issues setting up a prototype within Minemeld to pull correctly pull values from an external XML URL feed. The issue is with the indicator regex The data is provided in XML like this: <uri>https://example.com</uri><type>combo</type><pubDate>Wed, Nov 14 2019 03:30:03 UTC</pubDate>&l...

Resolved! PanGPS vs PanGPA logs on globalprotect

What is the main difference in between these log files? - I had read that one was more for the agent/gui - and one is the actual service? I do know that most of the helpful logs tend to show up in the PanGPS logs file - or so it appears. Does anyone have good feedback on this? - As far as troubleshooting the actual agent - which is better a...

Sec101 by L4 Transporter
  • 29260 Views
  • 4 replies
  • 0 Likes

Palo Alto and Fireye Integration

Anyone worked with integration of Fireye and Palo Alto firewall? We are experiencing packet loss when connecting fireye and wondering if anyone has work with this type of setup recommended sites:https://camjke.comhttps://pornsites.prohttps://freeporn.ooo

yunicapi by L0 Member
  • 2337 Views
  • 1 replies
  • 0 Likes

Resolved! DoS threshold per zone

Hi All, What additional tool can l use to get CPS/SPS intonation hitting specific zone?I found this KB with three wonderful MIBs:https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/zone-protection-and-dos-protection/zone-defense/take-baseline-cps-measurements-for-setting-flood-thresholds/how-to-measure-cps Is there a way to get the same st...

myky by L3 Networker
  • 4845 Views
  • 3 replies
  • 0 Likes

Resolved! PA license to download images

HelloWhat type of license do I need to download images ?Firewall has access to updates.paloaltonetworks.com but when I click "Check now" nothing happen.Trial license will be ok ? Thank youKonrad

polak71 by L1 Bithead
  • 4617 Views
  • 4 replies
  • 0 Likes

PA 5050 & 5060 replacement with PA 5250

Firewall upgrade/replacementDear All, Can anyone please advise on any specific points to be taken care for a hardware replacements for a pair of firewall 5060 fully managed by Panorama & to be replaced with 5250. To me a high level plan looks like.1. Prepare the new firewalls via importing device state with new mgmt ips to avoid any duplicat...

Gchander by L1 Bithead
  • 4258 Views
  • 1 replies
  • 0 Likes

Panorama: Device group can't view addresses nor zones in sec policies

I recently added a template and device group and associated them with two new PAN 3020s. The template and the device group were clones from similar environments. When I try to edit a security policy or add a new policy and go to the source or destination and try to add a zone or address, there is nothing in the drop down box. Things i have tried...

palomed by L3 Networker
  • 6638 Views
  • 5 replies
  • 0 Likes

Resolved! HA HSCI 3220

I have a pair of 3220s I'm configuring in HA active/passive. We connected the HSCI ports and got a green light on the ports and showing green/up on the HA dashboard widget. They are direct-connected and configured as Ethernet. Do I need to set an IP address on these for this config or are they good to go?

Traffic pattern of threat ID 38643

Wavelink Emulation License Server HTTP Header Processing Heap Buffer Overflow Vulnerability' generated by PAN NGFW detected on host 10.10.10.1. " Vulnerability Exploit Detection (hostname:8081/)"We have customer asking what is the traffic pattern that triggers this.What is the traffic pattern that triggers this alert?We are trying to narrow down...

Resolved! PanOS CLI show tags?

I can tag a rule via CLI, but how can I ask Panorama to show me rules tagged with tag-name? set device-group DG-Name security rules "Existing-rule-name" tag tag-name

BoDollis by L1 Bithead
  • 5159 Views
  • 1 replies
  • 0 Likes

Redistributing default route into EBGP and IBGP not working

I am trying to redistribute default route into EBGP peer it is not working. 1. Created Redistribute profile to redistribute default route2. called redistribute profile under bgp redis rules3. Checked allowed default routes to redistribute3. created export policy to export 0.0.0.0/0 with action allow. Looking at below command we see export polic...

  • 24380 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks