General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 279 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3159 Views
  • 2 replies
  • 14 Likes

Resolved! Policy not catching correct traffic

Hi all, first time poster so go easy!

 

We're running into an issue where a rule that is meant to catch ether-ip traffic on port 20033 is slipping through and being caught by a lower rule which allows any application and service. Rules as follows:

 

 

Whe

...

rules.png
rulebig.png
cli.png

HA1-B down on 3200 series

I've been doing some tinkering with a pair of 3220s and am noticing that in the GUI it's reporting HA1 Backup is down in the HA widget of the dashboard if I use the HA1-B port.  HA1-A is up, and if I use the management port for HA1-Backup, it comes u

...

dan731028 by L3 Networker
  • 9897 Views
  • 6 replies
  • 0 Likes

Resolved! Adding a sub-interface to an exsiting Security Zone

Hi,

 

I have a Palo Alto with existing security zones managed via Panorama. I need to add an existing sub-interface to an existing security zone which has been done on Panorama and committed. However, after logging into the firewall node directly the s

...

vvadia by L1 Bithead
  • 5247 Views
  • 6 replies
  • 0 Likes

move subinterfaces to new aggreagate group

Hey guys,

I got a pair of PA-3020s (8.0.7) and 2 ae's with a lof of subinterfaces. Each subinterface does have a gateway, security zone and vlan tag.

Out of permonance issues, I want to create a third ae with two new physical interfaces.

Then, I want to

...

MPI-AE by L4 Transporter
  • 1935 Views
  • 3 replies
  • 0 Likes

Wrong user from access log

Hello!

 

The local user Administrator is logged in on the desktop and he is not allowed to access the internet. But he can access.

When checking in Monitor on PA220, I noticed that another user appears in the Source User column and not the Administrator

...

How to view searched words using custom reports

Hello Community!

 

I´m trying to see the searched words made with different search engines. For this I wanna create custom reports and look for terms on the URL log database with the help of different query builders. I´m following the idea of this doc:

...

Carracido by L3 Networker
  • 2556 Views
  • 3 replies
  • 0 Likes

general question to aggregate group

Hi all!
When I create an aggregate group, there is the possibility to enable LACP.

But when I don't enable LACP, which ethernet standard is enabled then?

Does the firewall utilize bandwith over all links as in LACP?

Thank you

MPI-AE by L4 Transporter
  • 1948 Views
  • 2 replies
  • 0 Likes

Resolved! Testing Sinkhole DNS

Hello, all

 

I am testing Anti-Spyware DNS sinkhole. I set:

 

I make policy with this profile.

 

For most DNS-names in category “Malware” и “Command and Control” (https://threatvault.paloaltonetworks.com/) i see nslookup answer, for example:

 

Addresses: ::1

...

Sinkhole.png
aaobuhov by L2 Linker
  • 2017 Views
  • 2 replies
  • 0 Likes
  • 24089 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels