This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Using Minemeld for URL EDL

Dear MM comunity,

   I am trying to use MM for parsing a URL list to populate a PA NGFW which lacks Url filtering license.

I have found that predefined miner  urlhaus.URL which seems very well done. It is based on https://urlhaus.abuse.ch/ , which is

...

wdoria by L0 Member
  • 10749 Views
  • 4 replies
  • 0 Likes

Resolved! Device maximum ospf peers

hi guys is there a document that list the maximum OSPF peers and OSPF Areas for PA5220(per device is better) since ther might be a hardware or software limit on it for stability purposes. Thanks

toskie by L1 Bithead
  • 2926 Views
  • 1 replies
  • 0 Likes

Does "pre-logon" user belongs to "known" user?

Dear Comm,

 

I was googleing alot about this topic and but only found this:

 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClXlCAK

 

My specific question is, if a the User ID agent show the username "pre-logon" learned via "GP"

...

Rboehme by L2 Linker
  • 3881 Views
  • 1 replies
  • 0 Likes

Downgrade Pan OS

Does the debug svm revert still work on the 8 os? 

 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClcYCAS

jdprovine by L4 Transporter
  • 6896 Views
  • 8 replies
  • 0 Likes

Odd NAT issue...

Had a very odd issue yesterday,

 

I created two new Bi-Directional nat rules [seperate NAT IP's] to the outside world, one worked fine the other did not...

 

One server could not get to the outside world..

The NAT matched [OK],
The Security Rule Matched [O

...

nat1.jpg
nat2.jpg

Certificate Setup on HA Pair

Hello,

 

I wanted to use the SSL/TLS profile facility to restrcit management GUI sessions to TLSv1.2 but am having trouble with the certificates/process to follow.  We have an Active/Passive HA Pair, i have been trying to setup on the passive to test b

...

Resolved! Default Master Key lifetime

Dear Comm,

 

I do understand that we use the master key for encrypting our private keys and passwords stored on the firewall. However I am wondering why we should touch this key at anytime? What is the default lifetime of the default master key? I assu

...

Rboehme by L2 Linker
  • 4699 Views
  • 2 replies
  • 0 Likes

ldap user group unable to get access

I have ldap server setup with auth profile. User gets authenticate by ldap server and can login via global protect.

User is part og the group and a policy is created for this group to access resources.

If i change the group to any access is granted but

...

Regarding pcnse

What is the level of toughness that we have in real exam than what we see in practice test on a scale of 1-5.
Is there any good pcnse practice tests that match the level of real exam. The only source of my prep is just the pcnse study guide is there a...

Sanssj by L2 Linker
  • 3123 Views
  • 3 replies
  • 0 Likes

Resolved! Datafeed Empty Indicators

Dear group;

 

I had  running Minemeld server with defautl Miner like that spamhaus_DROP, spamhaus_EDROP working fine. I Create a Custom Miner of prototype libraesva.LIBRAESVA_Advertising_IP4 with the follow info:


Miner: LIBRAESVA_Advertising_IP4-feet

...

Resolved! BPA tool

I was told that we can use a tool called Best Practice Assessment. Have you got the link/app to access it?

Farzana by L4 Transporter
  • 13780 Views
  • 8 replies
  • 1 Likes

Resolved! Global-protect configs

I changed global-protect configs by GUI then I checked the following 2 items was changed which I had never changed.

Would it happen If I changed it by CLI? and is it by design?

 

The 2 items

GlobalProtectPortal configuration > Agent > Configs > App

・Set U

...

question on ms-one drive option

Hi,

I am looking into blocking online storage from our network, all except One drive.

 

Under objects->Applications->

Category-> general-internet

sub category file-sharing

I see ms-one drive has several options

base, downloading, share and uploading.

what do

...

  • 23731 Posts
  • 104 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks