General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 421 Views
  • 0 replies
  • 2 Likes

Redistribution Profiles - Source Types

Hi. I need to redistrubute some routes (loopbacks, and statics) into BGP.

 

Are their any advantages to having the source type as static vs connected under Virtual Router - Redistrubtion Profile - then go into Redistrubution Profile - Source Type.

 

Than

...

Resolved! Query on Brute Force Attack

Hello,

 

Is it possible for the PaloAlto FireWall to stop brute force attacks for inbound SSL sessions without the inbound server certificate being installed on the PaloAlto?

 

Is there any KB for this?

Resolved! Proxy IDs and routing

When having Site-to-Site VPN with Proxy IDs, do we still need to configure static route with next-hop the VPN tunnel interface or will traffic matching the proxy IDs be sent over the tunnel regardless of static routes?

BatD by L4 Transporter
  • 4232 Views
  • 2 replies
  • 0 Likes

EDL file problem

Hello -

 

I have created an EDL in PANOS 8.0.0 using a feed from Minemeld 0.9.40, when I commit I receive the following message:

 

EDL(vsys1/Skype-IPv4 ip) Downloaded file is not a text file.

 

Does anyone know how to correct the error ?

 

Thanks

paul_w by L2 Linker
  • 18765 Views
  • 19 replies
  • 0 Likes

Resolved! Test Global Protect before deployment

We are currently running Global Protect 3.1.6 on PAN-OS 7.1.14 (we're a little behind) and I am wondering if it possible to test a newer version of GP before deploying company-wide.  I am new to the company and there is some concern that has lingered

...

SSL Decryption - Without URL filtering license

Hello

 

I plan to put in place a SSL decryption rule to decrypt ssl traffic (SSL forward proxy). But I don't want decrypt traffic for several categories of website such as financial (bank website). I haven't the URL filtering license. I create a first

...

Skip Proxy path for specific URL

Hi Friends,

 

I am using PA500 firewall and access internet using websense proxy server. There is some URL are frequently block in websense server even they are allowed in websense security server. My question is how can I confiugerd policy in firewall

...

URL Category in Security Policy only for http?

We unfortunately use a smtp server with fqdn. (cannot use fqdn object for certain reasons)

And we implemented a security policy with the url category in the "Service/URL Category" section of the security policy.

In the security policy, the application

...

Public VPN Bypass Firewall

Hi ,

 

    I have blocked some Applications (like youtube, facebook etc in PAN-OS9.0.0), But employees are still able to access these applications while using VPN (Like ibvpn, purevpn).

If anyone have solution please let me know, how to block that traff

...

shafi.md by L0 Member
  • 2804 Views
  • 2 replies
  • 0 Likes

Miner for IWF feed

Do you use Minemeld to integrate IWF (Internet Watch Foundation) to Palo Alto and can you share the miner config?

 

The list input from IWF json input w and will need to convert to  “URL List”. The feed also requies username/passward authenticaiton. 

...

BatD by L4 Transporter
  • 2301 Views
  • 1 replies
  • 0 Likes

Resolved! Error at task npm install on RHEL 7.6

Hi, we are trying to install Minemeld using ansible and we are having the following error

 


TASK [minemeld : npm install] ********************************************************************************************************************************

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels