General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 17056 Views
  • 45 replies
  • 32 Likes

Resolved! HTTP Headers in Threat Log?

Hi, is there any possibility to see the HTTP Headers in Threat Log? For example i want to protect a shared hosting environment and on the threat log ( vulnerability profile, WordPress Login BruteForce Attempt) i can only see "wp-login.php" as the "UR...

TP-Log.png
iweltag by L2 Linker
  • 935 Views
  • 3 replies
  • 0 Likes

Panorama Access Domain Admins - Not functioning 7.0.3

Currently we have been working with setting up Access Domain accounts for our server admins to have restricted RO access to traffic logs and policy rules. The configuration appears sound but all testing using either local or radius/ldap auth accounts...

login-error.jpg

PA 5050 to N5K 10G Conn

Hi Guys, I am facing an issue, links are not coming up b/w the PA and the N5K and both are 10G Ports. In PA, we should keep the link speed as auto and in N5K, there is no option to set the 10G port link status to Auto, Have anybody faced this issue? ...

jithuraj by L1 Bithead
  • 476 Views
  • 2 replies
  • 0 Likes

Resolved! GlobalProtect on DHCP Interface

Hi, I have configured GlobalProtect on DHCP interface, but for some reason I can't make it work. I don't see GP web page and I cannot connect to it using GP client.I tried same config, but with static address and it works perfectly. Can somebody help...

nabokih by L1 Bithead
  • 2208 Views
  • 4 replies
  • 0 Likes

Resolved! Failed to insert certificate into configuration

Hi, When I try to generate self-signed certificate Device -> Certificate management -> Certificate -> Gererate. I got error "Failed to insert certificate into configuration. Only self signed CA certificates can have identical subject and issuer field...

nabokih by L1 Bithead
  • 5816 Views
  • 1 replies
  • 1 Likes

Cutwail/PushDo SMTP Attack Vulnerability Detection

I've recently set up a new PA-100-VM and been closely analysing it along with all of the traffic that goes through it. It is running 7.0.3 along with the latest updates to all definition files (updated nightly). In the process of doing this I've dete...

FIPS

show fips-mode does not work on PA-500, V6.1. I get "Invalid syntax" error message. Any advice/insight is greatly appreciated.

Debugging packet flow.

Hi there, We have just moved from a Juniper SSG-550 with around 700 policies to a PaloAlto 3050. Naturally this has thrown up a few issues! Can anyone explain how to do the equivalent of a Juniper “debug flow basic” on the PaloAlto? On the Juniper, t...

high dataplane cpu utilization

Hi, I have PA-2020 which has high dataplane cpu utilization. It is stuck at 100% during business hours. It drops to 25% after work. I suspect too much traffic but is there an easy way to check what sessions/applications are the most cpu intensive? Ma...

UMWL by L0 Member
  • 863 Views
  • 2 replies
  • 1 Likes

How to find source of high open sessions and/or throughput

If your Palo Alto firewall is experiencing an unusually high OPEN session count, and/or high throughput, what is the best way to determine the source or destination at the same time of the event? We have most of our security rules set to log at sessi...

jambulo by L4 Transporter
  • 1154 Views
  • 5 replies
  • 0 Likes

Resolved! WildFire Config

I have a question re Wildfire config. When the setting is set to 'forward' it gets sent PA cloud for analysis, provided it finds something bad , I assume it is put into the WF signature and next time the file is seen it gets blocked ? What does the b...

RC-BHF by L2 Linker
  • 305 Views
  • 1 replies
  • 0 Likes

Resolved! Active/Active HA in vwire mode - Link Monitor

When configuring an active/active pair of 5060s in vwire mode, is there a need to configure link monitoring? the 5060s are setting behind an HA pair of Cisco 5585s and want to ensure the Palos failing over will not affect the traffic from the ASAs. I...

Top Liked Authors