General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Join Us for a Tech Deep Dive Miniseries!

 

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.

 

Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real

...

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 465 Views
  • 3 replies
  • 1 Likes

Traffic log of non-authenticated captive portal sessions

I read this clear and useful article from @arsimon : Non-Authenticated Captive Portal Session Will Not be Logged by the Palo Alto Networks Device

 

 

These non-authenticated captive portal sessions can represent quite a lot of data. For example (after s

...

Emergency Palo Alto Networks Content Updated

 

Version 747

Notes:

This emergency content update provides coverage for recent generic exploit host page updates that have been seen in the wild. We recommend that you upgrade all devices to the latest Applications and Threats content version and revie

...

Resolved! Policy Commit Failed

Hi All,

 

recently I  have created an interface in Firewall which is managed by Panorama. Now after creating the interface, I am not able to push configuration on Firewall and getting below error. Can someone please help me?

 

Below is the error.

 

+++++++

...

Resolved! Looking to get started with SSL Decryption

I'm currently reading articles on this site on how to set this up. I was hoping someone could point me to a guide or tell me a very basic test set up for this feature on the P.A. Thanks in advanced.

User-id not working correctly

Hi All!

 

i have a issue with the user-id feature: some users are not recognized by the PA device: if i check the logs searching for the username i see the last access some days ago, but if i search for his ip he is doing traffic.

Even checking via CLI

...

DKanta by L3 Networker
  • 1514 Views
  • 6 replies
  • 0 Likes

Untrust to Untrust

Should the untrust to untrust be denied. As the defalt interzone traffic allows everything.

 

untrust to untrust rules for us are ether used for IPSEC or global protect. It seems to me blocking this traffic effects detecting SCANS.

raji_toor by L4 Transporter
  • 3072 Views
  • 2 replies
  • 1 Likes

Security profile group best practice

HI guys, I've read most of the reference material by Palo alto only applying security profiles on inside->out security polices but not outside->inside polices. I would think that is a given since outside->inside policies are to protect your front fac...

No wildfire submissions (FWD_ERR_CONN_FAIL_PUB errors)

 

Hi there,

 

Wildfire is not submiting files. I have the simplest configuration possible, and I'm using the test file (https://wildfire.paloaltonetworks.com/publicapi/test/pe). However, nothing is getting to the portal, or logs for that matter.

I'm runn

...

Hwinter by L2 Linker
  • 2717 Views
  • 7 replies
  • 0 Likes

SNMP MIB 7.1

Has anyone been able to load the 7.1 mibs? I keep getting "Import from missing MIB snmpv2-SMI" errors.

GFN182 by L2 Linker
  • 474 Views
  • 0 replies
  • 0 Likes

Configure GlobalProtect With Public IP adresse

Hello

 

1-i have the router adsl with the public ip adresse : ex 41.137.11.123 (WAN interface) ==> this is a Public/fixe IP adresse.

2-i have a paloAlto firwall, is connected by its wan interface (192.168.1.2) to the local interface of the router adsl (

...

Resolved! Call API key via invoke-restmethod

Is Palo Alto's API able to accept GET requests from the PowerShell "invoke-restmethod" cmdlet which have the api key set as a variable?  I ask this because I would like to run these requests without embedding my API key in the HTTPS GET request.  Thi

...

Log forwarding "Zone Protection" ?

I can't find an up to date way to enable log forwarding for "Zone Protection" profiles.

 

I found a guide for 6.1 but its not relevent for 8.0

 

I want alerts when we get port scanned.

 

Cheers

 

Rob

Top Liked Authors