General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Firewall Policy Dump.

I have about 50 VSys and I need to pull all the firewall rules for a few different sources. Is there an easy way to pull a dump of these policies or do I have to manually go through the GUI for each VSys and filter for those sources?Thanks.

ignore users for IP subnet

Hi, with the risk that this was already discussed, I have a question regarding ignore users with User-ID. I configured User-ID for our clients, also for the IT department.In the IT, we also using admin accounts. So when I started a programm in admin mode, the firewall registered this in the DCs. So my client gets the adm account linked with my c...

Resolved! Static Routes not updating Panorama to Firewalls

firewalls are not receiving the Static Routes added to Panorama.Do these need to be entered manually in the Firewalls or how do we propagate these changes? The Firewalls and Panorama are synched and other changes to Panorama are synched to the firewalls when I commit.The Static Routes are not synching even though I have committed the change. No ...

Upgrade Logs

I am trying to capture all the logs related to any upgrade and downgrade. I understand the firewalls download the firmware from updates.paloaltonetworks.com. This then points to the nearest PA Server to download the code from the CND infrastructure. My requirement is to have a log generated indicating the "EXACT" URL the firewall/panorama woul...

mk245v by L1 Bithead
  • 7134 Views
  • 6 replies
  • 0 Likes

Resolved! Decrypt Mirror Port and Performance

Hi Everyone, We already have ssl decryption enabled.Now need to config decrypt mirror port. Need to confirm when PA sends raw packets to server will it cause any performance issues on the PA? RegardsMike

MP18 by Cyber Elite
  • 4656 Views
  • 4 replies
  • 0 Likes

Looking for anti-scraping advice

If possible, what would be the best mehtod to prevent scraping using panos 8.1.X? What about something like auto blocking or alerting on a single source hitting the same destination X times in X amount of time? Thanks a lot,

Resolved! Firewall Region bug

Hello, we are experiencing the bug as per the link below https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClicCAC can anyone advise if this has been resolved in release 7.1.x code and if so in what release? Thanks Ryan

Unknown Login Attempts

I'm noticing several failed login attempts to our firewall for my domain admin account username. This does not actually exist on our firewall as a user, and as such is being rejected. I only log into our firewall using HTTPS access, i occasional use SSH, but have not for any of the events shown in the screenshot provided. The logins seem to o...

Incoming Ports for Gaming?

As per usual, the most interesting part of my job always seems to come back to our on-campus students and their BYOD devices. We've had some reports that Rainbow Six Siege is still having multiplayer issues despite most of those consoles/PCs being assigned public IP addresses (so no NAT required). This doesn't surprise me too much since it is a...

jsalmans by L4 Transporter
  • 3391 Views
  • 1 replies
  • 0 Likes

PANORAMA UPGRADE from 8.0.19 to 8.1.X template Query

I am in process of upgarding our Panorama (M-100) from 8.0.19 to 8.1.X code.I have gone through below URL for upgrade consideration and procedure to upgrade PAN.One thing i feel is critical to my enviroment is Template. We use regular template however 8.1.x code support template stack.As per online documention , conversion from template to templ...

Nischal by L2 Linker
  • 5303 Views
  • 3 replies
  • 0 Likes

URL Filter For One Specific URL

We have a VMWare Horizons install with a URL of:https://horizons.domain.com We need this available to the Internet. It is 2FA protected and works fine. This URL:https://horizons.domain.com/admin is not 2FA protected and is exposed to the Internet. Is it possible to block only the /admin url but not affect access to the upper link on a PA firewal...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels