General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 78 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3327 Views
  • 2 replies
  • 14 Likes

UDP log that hit any deny rule and show allow

Hello, i have a question about UDP session

 

rule 34

untrust any

trust any

app icmp, traceroute, ping

service any

action allow

 

rule 214

any any deny

 

 

 

you can see allow log hit rule 214

i found similar case about tcp.

https://live.paloaltonetworks.com/t5/Manag

...

20180616_111325.png
hbshin by L2 Linker
  • 1655 Views
  • 3 replies
  • 0 Likes

World Cup 2018

Anyone have a custom APP-ID to block world cup 2018? or is palo going to release one?

Ntripp by L1 Bithead
  • 3980 Views
  • 5 replies
  • 0 Likes

Resolved! Taxii Feed Error

Dear all,

 

today my Taxii Output stopping working, in minemeld-engine.log i see these errors:

 

2018-06-15T13:23:33 (24179)actorbase._actor_loop ERROR: CyberSOC-taxiiDataFeed-Test - error executing ActorCommand(command='update', kwargs_={u'source': u'MI

...

rafy92 by L1 Bithead
  • 5168 Views
  • 5 replies
  • 0 Likes

Failed to resolve domain name

Hi,

i get in the system monitor a message Type dnsproxy and event resole-fail mgmt-obj

 'Failed to resolve domain name:server.domain.com after trying all attempts to name server(s): IP_from_internal_DNS  8.8.4.4 '

and i dont know why.

I have set and Obje

...

Global Protect and CCMCACHE

I have a user that I am trying to reinstall Global Protect (v.4.0.6-7) for. However, whenever I try to install it, i get  message that it is trying to find globalprotect64.msi in c:\windows\ccmcache11. CCMcache11 does not exist. So I pointed the inst

...

Arena225 by L0 Member
  • 2648 Views
  • 3 replies
  • 0 Likes

OSPF Adjacencies Flapping over IPSec Tunnel

Hello,

 

I would like to open this issue up for discussion, and possible resolution.  We have an IPSec Tunnel between two Palo Alto Firewalls (PAN 3050 & PAN 820), and we advertise OSPF routes to interconnect both sites, over the tunnel.  This was work

...

Minemeld Downgrade

Hi to all.

 

With the newest Minemeld version (0.9.48) i have this error related to a STIX/TAXII feed that up to the update was working fine:

 

AttributeError: 'module' object has no attribute 'set_id_namespace'.

 

Is there a way to downgrade MineMeld?

 

Tha

...

want to upgrade to 8.0.X

Hey guys,

I have a HA pair of 3020s with 7.1.7

and a single 820 firewall with 8.0.2

 

Which version can you recommend for the 3020s and the 820?

 

8.0.5?

8.0.6?

Is there anything to be aware of?

MPI-AE by L4 Transporter
  • 4450 Views
  • 14 replies
  • 0 Likes

Resolved! I have two questions. about UDP Application & policy action

Hello, I have two questions.

 

1. How can Paloalto Firewall identify UDP Applications (ex : sip, ntp, sip, dns, snmp, tftp..) with one packet from source received ?

 

2. when i configure service any What is difference policy action deny & drop?

 

Best rega

...

hbshin by L2 Linker
  • 1988 Views
  • 1 replies
  • 0 Likes

PA-5200 QSFP+/HSCI DAC Cable type

Hi,

 

PA writes in his Front Pane description HSCI port "PA-5220 firewall —One QSFP+ 40Gbps port (supports only a 40Gbps (QSFP+) transceiver or QSFP+ active optical cable)." and nothing for the QSFP+ ports.

 

Does PA-5200 also support 40G QSFP+ DAC Passi

...

Resolved! VPN set up when other party uses L2TP

Hi Members

 

I have a vpn to set up when the peer end has asked for L2TP Ipsec. The other end is using some windows based built-in VPN.

Can this be set up? Does PAN support L2TP?

 

 

Thank you

R_Sharma by L2 Linker
  • 2196 Views
  • 2 replies
  • 0 Likes
  • 24124 Posts
  • 100 Subscriptions
Top Solution Authors
Labels