General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Diasble 7.1 Administrative session cipher suites

Hello,

 

A recent PEN Test has advised we disbale the Arcfour when connecting via SSH to manage the Palo Alto via CLI. 

 

We are on release 7.1.6 (pending upgrade).

 

https://www.paloaltonetworks.com/documentation/global/compatibility-matrix/supported-ciph

...

User-ID Statistics

We have a cenario where the Firewall control the Internet access from users in the local network and we control these access with URL profiles and security policies.
We identify the user session with USER-ID Agent installed on Windows AD Servers.
I'd l

...

mmcastr by L1 Bithead
  • 2910 Views
  • 3 replies
  • 0 Likes

Setting "log at session start" on multiple rules

I found a KB but it's from 2016 and is no longer applicable. 

 

I want to enable 'log at session start' on thousands of existing Security Pre-Rules across several Device Groups. I remember a multi-edit function but something's changed and I can't figur

...

Cacti Host Template: From PA500 to VM100 - failing

We have enjoyed Cacti statistics from our PA-500 box for years.  But when I replaced the PA500 with a VM-100 then Cacti could no more connect to fetch data via SNMP.  I thought both models used the same protocol and version.  Below you'll see a scree

...

CactiHost.jpg

Why public cloud users did not need Palo Alto before ?

Dear all

 

We can see heavy public cloud users since 2016. But we did not have Palo Alto on public cloud until recent. Does that mean public cloud does not need 3rd party security solutions like Palo Alto? Because if public cloud users really need 3rd

...

Re: user-id agent issues

 

 

We are using  windows user-id agent for parsing the user and user group mapping info. often i see in the logs that the user is being not recognized and hitting the deny rule.  after couple of minutes it starts recognizing the user and allows the tr

...

Sanssj by L2 Linker
  • 1757 Views
  • 2 replies
  • 0 Likes

Resolved! Errors in installing Minemeld on Ubuntu 14.04

 

I am trying to install minemeld on ubuntu 14.04. here the steps I did:

I made iptables inactive

I Added and verified successfuly the repo GPG key

I added the minemeld APT repo

I verified that minemled APT is added in /etc/apt/sources.list

 

However

...

Capture.PNG

PAN-SA-2018-0015

Hi guys,

 

Just saw the notice about PAN-SA-2018-0015. Doesn't seem like this vulnerability is a real issue. Am I correct? Or is there a viable way of someone exploiting it?

YoniLeit by L0 Member
  • 3765 Views
  • 2 replies
  • 0 Likes

Resolved! How to generate traffic reports for a specifi interface

Hello Palo experts,

 

I want to create a report which tells me what bandwidth has been used on an outside interface, for say the past month. Something that can display the average bandwidth being used during a day would be good. I see on my PA-3050 tha

...

rchung54 by L2 Linker
  • 12820 Views
  • 4 replies
  • 0 Likes

OSPF separate virtual router

Hi Expert ,

 

I would like to know can be possible about run  OSPF separate virtual router but the same use area such area 0.0.0.0  and   wouldn't  route to together

 

Please suggest to me Thank you 

 

 

  • 24164 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels