General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 45 replies

Resolved! How to make Windows / Cisco / PA network secure?

We have several GPO running on our clients to make the network secure as possible. Also the clients and severs are running in different VLAN. But which other configuration changes to I need todo to make the network secure?Maybe use NPS but what are t...

ZEBIT by L3 Networker
  • 1 replies

Resolved! How to block malware coming over VPN

Last week we had an internal user that was infected with CryptoLocker. Our users get through GPO network drives and also some of the files on these drivers were infected. We could disinfect the system and the files and we generated a GPO so no malwar...

ZEBIT by L3 Networker
  • 1 replies

GlobalProtect CEF format

Hi community,I've configured asPAN OS 6.0 CEF Guide, the threat, system, traffic, config and all other logs are in CEF format and parsed correctly in Arcsight, except GlobalProtect log. GlobalProtect log doesn't get parsed well, and I started creatin...

Can't get syslog to work via data port

Hello folks, Maybe someone has seen this before. I've got my syslog profile, log forwarding and policy setup the way they should be configured but the only exception is that I'm using a data port and UDP 1514. I've configured a service route and also...

x by L1 Bithead
  • 1 replies

Resolved! Configuring a port for a dedicated WAN link.

I recently ordered a 1GBPS dedicated fiber connection between my primary site and DR site. The ISP doesn't assign me an IP address or anything and says it is just a layer 2 connection. So I am a bit confused on how to configure my PA 3020s(one at eac...

Mogus742 by L0 Member
  • 1 replies

critical severity default action alert

I am trying to understand the meaning of the default critical vulnerability action "Alert". This question was brought up by management who gets the PAN Content Update email and I want to give them an accurate answer. For example, Adobe Flash Player M...

Question about threat logs - Type wildfire-virus

Hi all, just wondering why I see in our threat logs entries with the type wildfire-virus only for the application smtp... (I would like to post some screenshots, but I cant find the upload button?) What is the type wildfire-virus standing for? And wh...

Hithead by L4 Transporter
  • 4 replies

Resolved! How many can I create url-filtering profile on 5050?

Hello, I have two questions.1.How many can I create url-filtering profile on 5050? 2. And I have watched as below output of cli on 3020,sylee@PA-3020-uquest(active)> show system state filter cfg.general.max* | match profilecfg.general.max-profile: 15...

LogDB Import failing - anyone suggest why?

Folks. I'm about to upgrade my 2020's to 3050's (yay for new budgets!), and I'm trying to preserve the historical log data from my old firewalls by exporting and importing into the new ones. I've managed the export - at least, I'm pretty sure I have ...

darren.g by L4 Transporter
  • 0 replies

Disable windows upgrade to windows 10

Hi community,Currently we are using Kaspersky as a Endpoint Security / Antivirus software. And the Kaspersky we are using now is not currently supported on the Windows 10. But, office users are still trying, and some upgrading to windows 10, which di...

Resolved! How the interface may answer ping in this situation?

Hello for all. I had a problem that I resolved. But, I am posting because I could have solved of the best form. I have three links of internet. I have the firewall PA-200. These links are connected on three interfaces and the fourth interface is conn...

Bruce2 by L0 Member
  • 2 replies

Resolved! Send ICMP Unreachable panos7

HelloWhat really is the purpose of using that checkbox in policy action with drop or reset ? What are benefits ? ThanksRegards

PanIst by L3 Networker
  • 5 replies

Import ssh key

Is there a way to import an ssh key into a firewall?For instance, I run the following commands:ssh-keygen -t rsa (The public key is now located in /home/demo/.ssh/ The private key (identification) is now located in /home/demo/.ssh/id_rsa)ss...

Top Solution Authors
Top Liked Authors