General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 273 Views
  • 0 replies
  • 1 Likes

EBL size limit - sorting output feed

I'm using a minemeld server to generate an external dynamic list for a PA-5220 runing version 8.1.4.  The dynamic URL list exceeds the 50,000 entry limit.

 

I've seen other posts recommending to use URL parameters to limit the list to the first 50,00

...

dhenke by L1 Bithead
  • 3083 Views
  • 1 replies
  • 0 Likes

General troubleshooting for Office 365

 

I have set up the feeds, and the EDLs and added the EDLs into a policy.

Whenk I run the command in the CLI "request system external-list show type url name o365-URLs", I retrieve the list in the PA firewall, and the list there matches the list in

...

Minemeld.JPG

Updating MineMeld

Hi Guys

 

I am running 0.9.48 and want to get to 0.9.50+ to utilise the latest Office365 feeds.  I have checked the old method and I don't have the auto update utility installed 

/usr/sbin/minemeld-auto-update

 If it try this method as suggested

sud...

Custom search filters for Anomali

Hello,

 

Is it possible to configure the Anomali miner to allow for custom queries? For example, in threatstream, I like to search for the following string in Analyze -> Observables. How can I configure the anomali.opticAPI miner to allow for this?

 

((...

otlaP5 by L0 Member
  • 2749 Views
  • 1 replies
  • 0 Likes

Minemeld installation errors on ubuntu 16.04

Hi,

 

I'm trying to setup a new installation of Minemeld using the cloud installer and am seeing the following errors. it appears the Minemeld install never completes. I'm not well versed in ubuntu so any help is appreciated.

 

The following packages

...

neuadmin by L1 Bithead
  • 14807 Views
  • 19 replies
  • 0 Likes

Failover Link Monitoring too long

Hello guys,

 

I have 2 plao alto configured with HA Active/passive mode.

 

On both firewall, I configured link monitoring on link group with ethernet 1/11 and ethernet1/13 that are aggregated on Ae1 with condition "ALL". Those interfaces are plugged to a

...

Resolved! Hardware for Panorama VM

Do I need a full vSphere management suite for Panaorama VM deployement or whether I can get away with a free version of eSXi?

Resolved! blocking netflix application instead of url

currently i am blocking al the urls to netflix.

 

so when user access the website they get message blocked due to  url

 

on cli i see PA has to do some processing in order to block the url .

if i block the application netflix instead of url  that will red

...

MP18 by Cyber Elite
  • 3218 Views
  • 2 replies
  • 0 Likes

Resolved! Planning virtual deployment into cluster

I have a Hyper-V cluster that spans 4 hosts that I want to protect with a pair of PA VMs.

 

My question is do I need a pair of PAs for each host or do I add these two into my existing cluster and make the trusted interface on my existing vswitch and un

...

All hallows eve is on our doorstep, time for some poetry

As it's becoming a yearly tradition, I'm challenging all of you to come up with something funny

 

Last year we did pictures, this year we're going to have a go at Haikus!

We'll be selecting a (or more ?!?!) winner(s) who will not only receive eternal

...

jack-o-lantern-badge-18[2].png
reaper by Cyber Elite
  • 1831 Views
  • 1 replies
  • 4 Likes

Resolved! HA for interface pair as a DHCP client

I have a pair of VM-50 as an HA pair. When the primary firewall fails the IP is moved to the new active node but the MAC address changes and the ISP cable modem most likely does not accept this. The only resolution is to release and renew the DHCP ad

...

aarato by L1 Bithead
  • 3686 Views
  • 3 replies
  • 0 Likes

syn without window-scale option

Hi community, 

i am trying to access a website from LAN side of palo alto, even though correct policy is configured, tcp handshake was not complete. after packet capture i am able to find below points

  •  client sending syn packet
  • but i am not able to get
...

  • 23637 Posts
  • 107 Subscriptions
Top Liked Authors
Labels