General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 95 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3336 Views
  • 2 replies
  • 14 Likes

Miner for IWF feed

Do you use Minemeld to integrate IWF (Internet Watch Foundation) to Palo Alto and can you share the miner config?

 

The list input from IWF json input w and will need to convert to  “URL List”. The feed also requies username/passward authenticaiton. 

...

BatD by L4 Transporter
  • 2103 Views
  • 1 replies
  • 0 Likes

Resolved! Error at task npm install on RHEL 7.6

Hi, we are trying to install Minemeld using ansible and we are having the following error

 


TASK [minemeld : npm install] ********************************************************************************************************************************

...

PA-5220 high SWAP memory usage

Hi,

 

We have from time to time higher SWAP memory usage on 5520 box. 

Not sure if this would be critical or if I can just higher the treshold values in monitoring system.

 

On reference box the swap memory is 3%, but on this one 85%.

 

Reference PA-5520
---

...

agolob by L1 Bithead
  • 7035 Views
  • 2 replies
  • 0 Likes

Clientless VPN (Web) and SSO credentials

Dear Palo Alto Experts,

 

We have set-up a Clientless VPN webpage for certain users so that they can connect to an internal website from outside the company. 

 

When they logon to the VPN portal, with their Windows Credentials (Radius authenticaton), the

...

GlobalProtect_Chrome.png
GlobalProtect_Edge.png

Using custom URL categories

Hi guys,

 

We're trying to stop users from accessing webpages featuring 'momo' content.

 

We've set up the below custom URL category and it only blocks Google searches for momo while in incognito mode, and still allows Google image and Youtube results. 

...

URL category.png

Block websites when using VPN

Some users started to use SoftEther VPN client on our company which allows them to bypass URL Filtering policy. How can we allow them to use VPN client but still allow or block access to certain websites. We already implemented SSL decryption rule bu

...

nredaj by L1 Bithead
  • 6609 Views
  • 8 replies
  • 0 Likes

Palo Alto and Panorama integration/availibility question

Hi all,

 

I have some questions about integration between PA firewall and Panorama.

In my scenario, there's one cluster of PA devices and only one Panorama device.

The firewall policies were imported from the cluster into Panorama (Pre-Rules in the Devic

...

licenselu by L4 Transporter
  • 3505 Views
  • 4 replies
  • 0 Likes

pre-stage changes in Panorama

Is there a good way to pre-stage changes using Panorama? Sometimes I have needs to make a rather complex set of changes in various areas, but I don't want to commit them to the firewall for days or even weeks. Is there a good way to handle this? I kn

...

Fail Over using Path Monitoring & NAT configuration

I have a firewall wth 2 broadband circuits connected to it, one primary & one secondary.  My goal is to PAT all outbound traffic usinging the primary interface's public address but in a fail over situation I want to PAT all outbound traffic using the

...

Mine Palo Alto firewall (custom) reports?

Is anyone mining (own) firewalls reports?

I hate to reinvent wheel, so would appreciate any suggestions.

 

Use case: Teamviewer

They are not publishing their IPs ( https://community.teamviewer.com/t5/Knowledge-Base/Which-ports-are-used-by-TeamViewer/

...

Resolved! Static route path monitoring recovery

I've configured static route path monitoring on primary ISP.  When it if fails secondary ISP comes up.  Do I need to configure static route path monitoring on secondary ISP for primary to come back when the circuit recovers? 

 

Thank you

treese by L3 Networker
  • 4824 Views
  • 4 replies
  • 0 Likes
  • 24127 Posts
  • 100 Subscriptions
Top Solution Authors
Labels