General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Test TLD

We block the "unknown" category in web browsing. This recently became an issue when an application needed to be accessed by its IP address. If the user hacked his HOSTS file to set the name test.test.test to that IP address, he was able to get to the application. It looks like any URL with the top level domain of 'test' is allowed as "Computer a...

testtesttest.PNG

Palo Alto interfaces configuration

Tell me, please, if the device is not registered on the portal, will the firewall work? I connected PA-220 with PA-820 by patch-cord, but in the CLI I don't see the MAC addresses on these ports. Addresses from the same subnet.PA-220 Eth 1/1 config:PA-820 Eth 1/2 config:What I do wrong? Please help me.

pa220.JPG
pa820.JPG

Resolved! SSL Decryption Certificate Issues

I have created the SSL decryption certificate and applied it using group policy. When testing I have several workstations that work with no issue but many others that recieve certificate errors. I cannot find any difference in the browser setup, the SSL certificate is in the workstation trusted root store where it should be. It looks like a 50/5...

Millette by L1 Bithead
  • 5754 Views
  • 4 replies
  • 0 Likes

New GitHub Miner

I just wanted to share that I have created and published a miner for github.com address space. It uses the github meta api endpoint and offers miners for each category of github's address space. These are git, hooks, pages, and importer currently. You can find it here: https://github.com/lampwins/github-miner Just follow the instructions for...

Panorama configd crashing

9.01 and 9.0 - configd crashed on small changes to objects or templates prior 8.17/8.14 - reportd crashed. vm esx 16 cpu + 32 G RAM Anyone experiencing this?

Rulebase Organization and Flow

I hate having OCD sometimes because its things like this I struggle with. How are others organizing their rules? Are you grouping them by source IP? Zone? Common Apps? I have "business units" so each business unit has rules. So After each group of business unit rules there needs to be a deny for that "group" So I was starting to organize by sour...

Resolved! On-Site Spare using

Good day, dear colleagues! We bought two PA-220 and two PA-220 on-site spares. Total we have 4 firewalls - 2 main and 2 on-site spare. But we installed 1 main device and 1 spare. Could this be a problem in the future? Or from the vendor's side these are 4 identical devices? All firewalls was pre-activated. Thank you for a help!

Resolved! MineMeld - Unable to locate package minemeld

Hey, I just installed Ubuntu 16.04 to set up MineMeld according to these instructions:https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-Install-MineMeld-on-Ubuntu-Server-16-04/ta-p/253336 Once running sudo apt install -o Dpkg::Options::="--force-overwrite" -y minemeldI get the following Error: E: Unable to locate package minemeldWh...

husetech by L2 Linker
  • 4538 Views
  • 2 replies
  • 0 Likes

Free visualisation (NOC screenboards) for PANW firewall performance/monitoring using Elastic Stack

I was looking for ways to provide 'at-a-glance' visualisation of PANW firewall health, including traffic, threat, system & config logs. The stock capabilities, including ACC, are decent but somewhat lacking in providing NOC-style dashboards. Inspired by other visualisation solutions I've seen around, such as the Splunk App & Graylog dash...

Resolved! Application 'github-base' and SSH

Hi all, Can someone please explain why the "github-base" application depends on SSH? We are running into a number of problems with web sites that are hosted on Github. Users want to get to these sites for legitimate reasons. IT people have also wanted to download Github projects. I don't have a problem with approving github-base, but we h...

RSKadish by L2 Linker
  • 18915 Views
  • 7 replies
  • 0 Likes

Maximum VPN Tunnels on a PA-820

Hello,Does anyone know what the maximum VPN tunnels are on the new PA-820 firewalls? The current doc out there does not include the new 220, 800, 3200, or 5200 series firewalls. Thanks.

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels