General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Panorama Query Builder

Hello,

 

We are an organization with thousends of users. Our user names have prefixes stranding for their departement or unit, for example tic_username for IT, mkt_username for marketing and so on.

 

I would like to generate custom report using Panorama

...

Resolved! ospf route tie breaker in PA

Hi all,

 

I am trying to make sense of tie breaker in case of equal cost ospf routes on palo alto ( all the route below have the same metric and all of the same type). Note ECMP is not use so only one route is choosen for routing. Couldn't find on the

...

KarimSN by L1 Bithead
  • 3478 Views
  • 4 replies
  • 0 Likes

Resolved! Traps client - uninstall password

Hi all,

 

We are currently testing Traps and during client installation, one of my colleague configured a wrong IP for ESM serveur.

Traps client is installed but as it is unable to reach server, uninstall password in not set.

 

Does anybody know how

...

VinceM by L5 Sessionator
  • 15569 Views
  • 8 replies
  • 0 Likes

Resolved! Unexpected behaviour URl filtering web

Hi,

 

We are having a unexpected behaviour with PA identifying a web:

 

"rose.pharmaintelligence.informa.com"

This web is categorize like "news". We have in our URL profile "continue". But we are seeing that this web is being denied with reason "policy de

...

URL.JPG
url news.JPG
traffic.JPG
BigPalo by L4 Transporter
  • 4334 Views
  • 10 replies
  • 0 Likes

Resolved! Bulk import applications into application group

Hi

 

Lazy request here...

 

Im trying to create application groups which will have a lot of applications in them and i wonder is there a way of easily importing a load of apps into a group, rather than typing it in one by one? I have exported the logs so

...

CRDF18 by L2 Linker
  • 4437 Views
  • 6 replies
  • 0 Likes

Global Protect Client software version

Hi all,

 

We upgraded client vpn 3.1.4 to 4.1.2. We are having 200 end users. I just need to check how many users accessing new Version. because still old version also available.

 

How many of using Globalprotect version 3.1.4 ?

How many of using Globalpr

...

IPv6 with Comcast?

Hi,

 

Anyone have their PAN setup with Comcast using IPv6?  I don't believe PAN supports IPv6 prefix delegation yet.  How do you set it up to take advantage of IPv6?

 

 

Resolved! Adding device serial number to Panorama with API

I am trying to add a PA-VM to the Panorama using the Panorama API.

 

I try:

 

https://1.0.20.30.40//api/?key=LUFRPT0zAndSoOnAndSoOnAndSoOn=&type=config&action=set&xpath=/config/devices/entry[@name='all']&element=<serial>12345678012345</serial>

 

and I get

...

Resolved! Question about outbound hostname restrictions

I'm familiar with user based restrictions to outbound resources, such as youtube, but is it possible with say, a regex expression, to block access to a site like youtube through a list of machines that include a name like kiosk, as in cakiosk01, coki

...

murphyca by L1 Bithead
  • 3389 Views
  • 7 replies
  • 0 Likes

Resolved! Single firewall with core connections

I have a single firewall no HA at the moment which is connected to my 2 core routers which the routers running HSRP. How does Palo device know which device to send traffic to as it seems its sending too both causing asymmetrical routing.

clydef by L0 Member
  • 1859 Views
  • 2 replies
  • 0 Likes

Resolved! TAXII into QRadar

Hi there,

Is there any guidance for how to set up TAXII output for QRadar to ingest? I see in the latest release notes:

 

- TAXII DataFeed now translated IP Ranges into CIDR for better compatibility with 3rd party TAXII clients (read IBM QRadar)

 

 

...

Resolved! How to use Aggregate interfaces LACP?

Testing a PA-220. Create an Aggregate group with 2 interfaces.

Both interfaces connect to an unmanaged D-Link switch. And it connected to the company network.

The aggregate interface can up when LACP is not enable.

After enable LACP. It down and hover t

...

jeremylo by L3 Networker
  • 7352 Views
  • 5 replies
  • 0 Likes

Need help determining why something is blocked.

I am getting the following items blocked, but I can't tell why.  I am not blocking the games category with my URL filtering.

 

I also can't find a way to specifically allow Microsoft PE file transfers. I have also tried whitelisting the site, but nothi

...

Palo-Deny.GIF
dsmall by L0 Member
  • 2017 Views
  • 3 replies
  • 0 Likes
  • 24282 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels