General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

jdelio by Community Team Member
  • 1 replies

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

Resolved! Anyone having issues with Threat ID 40059 (HTTP Brute Force)?

Palo Alto pushed out an update to the HTTP Request Brute Force Attack signature (40059) on 06-15. Since then I've seen a rash of threats being identified from Akamai Technologies IP addresses (about 8 different addresses). I'm wondering if anybody el...

BPry by Cyber Elite
  • 2 replies

PA identifying traffic from AKAMAI as BruteForce.

Hi guys, Context: For the past 24 hours we've had constant reports of a Brute force attack on our servers originating from the Akamai CDN's. I'm unsure whether this is simply a false positive, or if there something to actually worry about. I've submi...

MIGAS by L1 Bithead
  • 8 replies

Resolved! EBL Issues

I've just started to test working with an EBL to quickly update a block list without having to apply the URL Filter to all of the different groups that we have. I've verified that I have connection to the document and that the Palo Alto sees it but I...

BPry by Cyber Elite
  • 11 replies

Resolved! Palo Alto PA-3050 100 % CPU

These were upgraded from 7.0.6 to 7.1.2 on 31 May. Since then we are suffering from the data plane very frequently using 100% CPU. For example: admin@PA-3050-5(active)> show running resource-monitor hour Resource monitoring sampling data (per hour): ...

Identifying Applications

Hi guys, Got an odd one here. Traffic is being identified as a completely different application to what the traffic actually is. For example, see below. I've cleared the dataplane cache and re-downloaded the DB categorisation as per the document belo...

traffic application.png

MAC Address Table learned by Palo Alto

Hi , Is there a way we can view the MAC addresses learned by Palo Alto, I am not talking about ARP. So in Juniper/Cisco Layer 2 Switches you can see what mac addresses are learned on the mac address table Can we do that same in Palo Alto? Thanks

uzaheer by L0 Member
  • 3 replies

Resolved! Huge traffic to port 3978 for application Panorama

I am seeing huge size data for application " Panorama" to the port 3978.The size is in Gbs( 30gb) etc.On thing could observe is start time and end time is big=Start Time 2016/05/30 11:01:00Receive Time 2016/06/14 04:12:34=The source IP is firewall ma...

HA pair on different os version

I have a HA pair (active/passive) that I want to upgrade from 6.1.11 to a stable version of 7. I also am using global protect with certs. According to some information I gathered from the community if I upgrade to what I was told was the current most...

jdprovine by L4 Transporter
  • 14 replies

New to Palo Alto

Hi all I am a firewall engineer and I am completely new to Palo Alto firewalls. Would any of you be able to recommend any training, certification I should start with? Thank you in advance. M

PBFand Default route

In our orginazation, we have dual ISP and PAN firewalls. We have configured PBF with ISP 1 and default route for ISP 2 Both ISP interfaces on Pan firewall is same zone called untrust example : ethernet 1/11 ethernet 1/11.200 ----- - un...

UAC & GlobalProtect

Hi All! I am having an issue with globalprotect updater and UAC. It seems that when GP wants to update to a newer version it uninstalls fine, but then my users get a UAC prompt when it wants to update. Because they are not admin accounts the update f...

MathewG by L0 Member
  • 0 replies

Manage users connected to wire from layer 3

Hello i need for you help. The client has device connected in virtual wire mode and wants to configure another interface on the device that will connect to your LAN where their servers are and can see users who connect to the virtual wire mode. The v...