General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 257 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 936 Views
  • 0 replies
  • 0 Likes

Resolved! File Blocking rule logic

The following KB article states that the File Blocking rulebase is not top-down but based on action precedence. The article fails to mention anything on the function of the application column with regard to processing logic:

https://knowledgebase.palo

...

Resolved! Allow traffic after "decrypt-error"?

Is there any way to allow traffic after "decrypt-error"? I get a lot of decrypt-errors showing up in the logs when SSL decryption is enabled. Most of it is from amazonaws.com (even though I excluded it from decryption). I would rather just allow the

...

Maxstr by L3 Networker
  • 21901 Views
  • 2 replies
  • 0 Likes

Can rapid fire spam phone calls be blocked by the PA

Can rapid fire spam phone calls be blocked by the PA, they seem to be similar to a dial of service and they are making it possible for us to make outgoing calls or recieve incoming calls by using all our phone sessions? Is there a way to block them u

...

jdprovine by L4 Transporter
  • 9316 Views
  • 10 replies
  • 0 Likes

Resolved! Threat log forwarding from unlicensed PA device?

Hi folks,

I believe I know the answer, but wanting to make sure I understand.  I am configuring log forwarding to a Varonis server for testing.  I've been sending the traffic log, but Varonis will only process the Threat log.  

 

I've configured the Thr

...

pasyslog.jpg
OMatlock by L4 Transporter
  • 3702 Views
  • 3 replies
  • 0 Likes

I have question with SSL decryption.

Hi there.

Few days ago, I 'd changed one of my client's F/W .

Everything was okay but decryption wasn't working.

After few times, I found out what problem was causing that issues.
(added decryption profile and changed policies (service: application-defau

...

Resolved! Is it possible to disable FQDN refresh?

 

According to these articles:

 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHJCA0

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClKbCAK

 

it is possible to change the timing of how often PA does

...

User-ID

Hello all,

currently, we are facing with a strange issue related to user agent. Scenario is that, once the user login to his/her laptop then tries to surf, e/she will get dropped by the firewall. After further investigation, we found that the time the

...

Shadow by L2 Linker
  • 11174 Views
  • 11 replies
  • 0 Likes

Global protect AD strange issue

I have a strange and critical issue. I have Always-on type global protect with cert based username and OTP authentication method on handful of user machines. I have set the captive portal timeout for 0 and enforce network access under portal app sett

...

Error when using stdlib.syslogMiner

Hi together,

 

I am trying to import PANOS-Threat Logs into MineMeld using the syslogMiner.

I have configured the Miner and the LogForwarding via Panorama and can see the incoming logs at the Minemeld instance using tcpdump.

 

Still I see no indicato

...

Resolved! Panorama External Dynamic Lists

I had to RMA our m-100 and when I did that I lost the external dynamic lists on the PANORAMA itself.  They are still locally on the managed FWs but I cannot referrence them on the Panorama.  Of course that broke all outbound traffic because the top r

...

drewdown by L4 Transporter
  • 3590 Views
  • 2 replies
  • 0 Likes
  • 24031 Posts
  • 115 Subscriptions
Top Liked Authors
Labels