General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

QUIC deny vs drop

Just curious.

 

The recommended QUIC rules set the action to 'deny', but the first rule is for service udp 80/443 any application. Is there a reason this is a 'deny' and not a 'drop'?

 

Reference

HOW TO BLOCK QUIC PROTOCOL

https://knowledgebase.paloaltonet

...

mike406 by L2 Linker
  • 2329 Views
  • 1 replies
  • 0 Likes

Resolved! Custom App signature and App pushed from PA update

 

What if we create creates a custom application containing Layer 7 signatures.

And after few days the PA send the Latest APP and  Threat updates and we download those in the PA


What will happen if the update contains an application that matches the sam

...

MP18 by Cyber Elite
  • 2222 Views
  • 2 replies
  • 0 Likes

Block VPN access for lost iphone/ipad

Hi, I followed the document on how to create VPN for IOS devices with certificates, and I got it working.

I was wondering how I can deny a device VPN access for a device which is lost or stolen. Deleting the certificate Client ID certificate on the Pa

...

LocalDB Node Bulk Uploads

Is it possible to bulk upload to the LocalDB Nodes?  The input UI appears to only accept a single indicator per line, and doesn't do any validation of the information being input.

Indicator Loader.JPG

Resolved! GlobalProtect stopped to work after appliance reboot

The GlobalProtect Portal/Gateway had been working perfectly until tonight I have restarted the Palo Alto appliance.

After - I was not able to connect. The portal page - ERR_CONNECTION_TIMED_OUT.

 

I tryied to load older configs, I have even reinstalled

...

Resolved! About Threat and Wildfire submission

 

Hi all and specialist engineer, I would like to know sometimes I'm doubt about monitor wildfire submission and threat which wildfire is shown in a monitor (ref: wildfire portal ) but why threat does not show even though same both a file name and typ

...

Resolved! IPSec P2P VPN Tunnel not working

Hi,

I am trying to terminate on PaloAlto VM-100 (8.0.13) an IPsec tunnel.

It seems that the other side is not able to connect at all. We have checke all IKE settings and they seem OK.
I am using a Loopback interface with an external IP address (exactly

...

Where is app-id for https?

I am trying to fulfill a request by my security team to enable app id on our palo alto rule base & I cannot find the app id for https.  There is also a machine inside our envirionment that needs to be accessed over tcp 444 using https:// so I assume

...

AutoFocus Miner problem

I am getting no indicators when I run an AutoFocus miner on an AutoFocus search to pull in the files my Firewalls submitted to Wildfire and did not block.  The query I'm running is:  {"operator":"all","children":[{"field":"sample.malware","operator":

...

MM Screenshot.JPG
AF Screenshot.JPG
  • 24126 Posts
  • 102 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels