General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 306 Views
  • 0 replies
  • 0 Likes

tcp out of order

I am trying to diagnose why I am unable to access some server via ssh and the VPN. I have done a packet trace and the results were concerning tcp out of order and retransmission. So what is the best way to find out why?

jdprovine by L4 Transporter
  • 12970 Views
  • 7 replies
  • 0 Likes

WildFire file size limits

I'm trying to figure out whether our file size limits for WildFire are set appropriately. I have been unable to find a good way to determine whether there are files that aren't being uploaded due to their size. Would that show up in our logs? I've al

...

Resolved! Get vulnerability description and signature

How do I get the signature on what a Vulnerability has triggered?

I can only see the Threat Name and its ID in Panorama and look up the ID in the Customer Portal.

But there does not stand what combination or findings actually lead to this attack. Where

...

Missing IP's in Minemeld feed

We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL.

 

https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist

 

 

Every few months i got notified to comunication with one of

...

image.png
image.png
raji_toor by L4 Transporter
  • 4793 Views
  • 2 replies
  • 0 Likes

Not seeing a customized prototype in GUI

Hello team!

 

I hope you are doing alright.

Currently, I am trying to add a customized miner prototype and while creating it in the /opt/minemeld/local/prototypes/ folder, I am not able to see in added in the GUI.

 

What could be the problem here?

 

...

where to define a static public IP for IPsec

Hi I have to build up a IPSec tunnel with a partner. So at Network -> Interfaces -> eth 1/1 I have my connection to internet with a /28 Net. I call it for example 12.34.56.144/28 net. There the router from my isp is IP 12.34.56.145. I will build up m

...

Missing IP's in Minemeld feed

We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL.

 

https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist

 

 

Every few months i got notified to comunication with one of

...

image.png
image.png
raji_toor by L4 Transporter
  • 2299 Views
  • 3 replies
  • 0 Likes

Resolved! Understanding Throughput

i need help with understading how threat prvention throughput works ,i mean for all integrated features(ips,antivrus,..) what is the throughput of each alone ,as in specsheet only total throughput is mentioned 

2FA on both portal and gateway

If you have two factor auth on the portal and the gateway without using the cookie or passing the auth from the portal to the gateway will it ask you to authenticate twice?

jdprovine by L4 Transporter
  • 4682 Views
  • 15 replies
  • 0 Likes

Resolved! DShield list

Hi guys,

 

recently I've noticed a strange behaviour in my DShield miner (dshield.block prototype, https://www.dshield.org/block.txt). I have 2 MM (0.9.46 and 0.9.48), and both present the problem. Time to time, I can't precise the period, in fact it i

...

GlobalProtect Client with Android 9 (pie)

Is PAN abondoning the GP mobile client on Android? The last update was a while ago, the UI is just horrid and it crashes under Android 9. Several reports of the issue have been made but all is quiet so far. Does anyone have any inside info? I was usi

...

hshawn by L4 Transporter
  • 2463 Views
  • 3 replies
  • 0 Likes

FTPS connections are not working

Hi,

 

We have a inbound NAT for FTPS but the connections are not working. We can not see any deny in FWs.

We dont have decrypt SSL configured. I think it shouldnt be necessary, right?

Policy configures has "ssl" and "ftp" allowed. this is the ftp log:

 

 

W

...

Logs ftps.JPG
BigPalo by L4 Transporter
  • 3767 Views
  • 3 replies
  • 0 Likes

Resolved! problem matching rule with user-id

hello, I have a problem matching rules using user id, in uadebug.log I can se this warning:

[ Warn 2813]: Device thread 1 replied get BloomFilter msg with no BF

someone know what that means?

 

Thanks

Marivi by L2 Linker
  • 4933 Views
  • 1 replies
  • 0 Likes

SSL proxy allocation error

I had ssl decryption in place on PA_5020 and it seems like during peak times, my internal data traffic is reaching max ssl decryption session limit and those beyond the limit are shown as decrypt error and are sent un-decrypted. Is there any solution

...

  • 23821 Posts
  • 112 Subscriptions
Top Liked Authors
Labels