General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14570 Views
  • 1 replies
  • 4 Likes

Miner for STIX using API token

couldnt find the miner of STIX API Token type.

Below is the sample request. Appreciate any pointers to an existing miner and connfig requirement / help to create new miner.

 

POST /stixapi/recent HTTP/1.1

Host: ncert.nlabs.org

Content-Type: application/x-

...

Resolved! Using Panorama to setup a HA cluster

Hi

 

I am trying to setup a brand new pair of pa-5220's in active active.

 

But I can't set 

aux1 & aux2 for HA1, HA1 backup

IP address used for HA

and I can't seem to push the config to the PA from panorama, a cyclical error - no ip address , HA not enable

...

DHCP ISP CLIENT

Hi,

 

I have a DYNAMIC ISP that I will use DHCP Client on interface. I know there is option to add default GW provided by ISP, but I only want to use this default GW for a couple IPS such as peer IPSEC IP. How can I do this with out PBF

 

Thanks

junior_r by L3 Networker
  • 544 Views
  • 1 replies
  • 0 Likes

Can OSPF run without a "true" area 0

I've started working for a new company who uses only static routing. We just turned up a second ISP at one site, but I noticed an issue with failover which is expected. When ISP 1 fails, local traffic at the site routes out ISP 2, but site to site tr

...

Resolved! Not-resolved URL category

Having issues with many urls being categorized as not-resolved - tried failing to passive box and same issue. Also have tried to recatergize a url from within the firewall gui (url logs) and get an error:

 

'This functionality is unavailable as this de

...

clewis1 by L2 Linker
  • 3129 Views
  • 2 replies
  • 0 Likes

Resolved! How to block Dish Network application

I have a user that is abusing their privileges and would like to block services internally. A user wished to have the Dish Network application installed on their laptop to use while traveling. There has been reports that the use was using the applica

...

ksmith by L0 Member
  • 4073 Views
  • 6 replies
  • 0 Likes

Resolved! When setting Strict Security Profile

Good day everyone need help with verify some information about setting strict security profile. 

We are wanting to set the all Security profile from default to strict to help contiune doing the best security practices recommend by palo alto. Also not

...

Resolved! URL Filtering doesn't work with Google-base/quic/google-docs

Hi Everybody

 

I have a customer who whant to block this page "goo.gl/forms/NeclIZETrjUiyFBT2" (seems to be used as malware). We include it in "block list" in the Url Filtering Security Profile but it doesn't block it. 

 

In monitor tab, the session does

...

SOC_CSG by L4 Transporter
  • 5894 Views
  • 7 replies
  • 0 Likes

App-ID for general internet browsing

This is a question for the Heavy App-ID users. 

 

How do you handle the rules for normal internet browsing? My users have access to most of the internet (except for a handfull of URL catagories)  I have been trying to figure out something using Applica

...

Kaje by L2 Linker
  • 2852 Views
  • 7 replies
  • 0 Likes

Resolved! Advice needed for WiFi network

Hello

 

I have network dedicated for WiFi: 192.168.33.0/24 with DHCP on PA box. Lease time is 30min but even with that there is a lot of commited IP's that are unusable because of lack of Wifi coverage.

 

I'd like to expand it and get more than 250 possi

...

_slv_ by L4 Transporter
  • 1303 Views
  • 3 replies
  • 0 Likes

Setup HA now and update Licenses later?

HI there,

Right now we have single PA-3020 as our HQ firewall.

We are planning on setting up HA on a pair of PA-3020. Right now we only have been approved for a budget of the secondary hardware. We have been approved to add matching software licenses i

...

Top Liked Authors