General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 241 Views
  • 0 replies
  • 0 Likes

Resolved! Query on URL filtering

I found this article on URL filtering.

My question is how is *.baidu.com not allowing mp3.baidu.com or news.baidu.com as well

What does *. signify or equate to this scenario.

 

ALso is there is any need or scenario in which we would need to add 

www.baidu

...

Resolved! Custom Prototype for 'basic' weblist mining

Hi,

 

I'm trying to create a new custom prototype to ingest a list of URL's that is hosted on a simple webserver.

 

badman.one/1/2/3 badman.two/ badman.three/2/3/4/5.exe

The list is published as above, and it works perfectly when I use as an EDL sour

...

apackard by L4 Transporter
  • 3414 Views
  • 2 replies
  • 0 Likes

Resolved! Site to Site tunnel

Hello

 

I have a question about the configuration of the ipsec tunnel, in the article when the tunnel interface is created

 

"Optional) If you want to assign an IPv4 address to the tunnel interface, select the IPv4 tab, and Add the IP address and netwo

...

Resolved! WildFire phishing emails allowed instead of blocked?

Hello Everyone,

 

I note that when I view the Monitor -> Wildfire Submissions activity on my Palo Alto PA-3020 8.1.6, all the detections with a verdict of "phishing" with a Severity of "high" are allowed. 

 

However, the other verdict I can see, which is

...

Resolved! troubleshooting SSL decryption

We've been using SSL decryption for a while now.

Where for the most websites, this is not an issue, once in a while a user complains that certain https website doesn't load at all. Browser just keeps loading indefinitely.

We can't find a reason in the

...

dieter_b by L4 Transporter
  • 11953 Views
  • 7 replies
  • 0 Likes

Minemeld - New Install - Advice

Hi Mindmeld Community

 

I wonder if you could kindly offer some 1st steps advice ?

 

Can anyone offer any tips and quick hits I can setup to show Managment it working, Id like to show them that the threat intel we can pull down is actually being used

...

DewarD by L0 Member
  • 3161 Views
  • 1 replies
  • 0 Likes

Resolved! PAN-OS 9.0 -go live?

Hiho,

 

has anyone 9.0 already on production units?

I´d like to have your feedback regarding the release.

Wait for first hotfixes / minor patches or go productive?

 

Greetings

FQDN refresh failed

We have 4 PaloAlto clusters and a FQDN refresh works on 3 of the clusters but not the 4th. All objects are shared on the 4 clusters. I have tried:

 

Scheduled refresh of FQDN fails

Manual refresh of FQDN fails

Changed the FQDN refresh time.

I can ping the

...

Resolved! The Rule is allowed but hit policy-deny?

Hi,

Recentely the firewall upgraded from 6.1.5 to 8.1.6 but after upgrading there is something strange, there is a allowed rule but in monitor tab it hit deny, i tried to move it to top but still the same issue ( Session End Reason: policy-deny ).

 

Any

...

DPWorld by L1 Bithead
  • 11958 Views
  • 4 replies
  • 0 Likes

Resolved! ssl decrypt exempt and C2C

 

we need to do do ssl decrypt exempt for number of domains.
this we are doing as per vendor requirement so that application can run without ssl decrypt 

 

1>Need to know if traffic is not decrypted and end user pc gets infected
can c2c in url filtering p

...

MP18 by Cyber Elite
  • 4268 Views
  • 5 replies
  • 0 Likes

Default superuser CLI access via TACACS authentication

Have auth profile setup to use a TACACS server.  VSA is passing "superuser" as the admin profile, but it is not giving me access to the CLI as superuser, only GUI.  I know I could create another admin profile and grant access that way, but it locks o

...

cdwing by L1 Bithead
  • 3363 Views
  • 3 replies
  • 0 Likes

Resolved! Paloalto 6.1.15 cannot download dynamic updates

The Paloalto firewall stop to download the dynamic updates since 28 Jan for Antivirus and 6 Feb for Applications, is that beacuse of the PAN-OS, should i upgrade 8.1.6.

 

Appreciate your help

 

 

Thanks

 

 

DPWorld by L1 Bithead
  • 3282 Views
  • 2 replies
  • 0 Likes

Resolved! PAN-OS Version Numbering

I saw a strange PAN-OS version on the support site software updates and wanted to know what this version is. What does the "h2" designation mean?

 

8.1.6-h2

 

 

  • 23625 Posts
  • 107 Subscriptions
Labels