General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 417 Views
  • 0 replies
  • 2 Likes

Panorama Query Builder

Hello,

 

We are an organization with thousends of users. Our user names have prefixes stranding for their departement or unit, for example tic_username for IT, mkt_username for marketing and so on.

 

I would like to generate custom report using Panorama

...

Resolved! ospf route tie breaker in PA

Hi all,

 

I am trying to make sense of tie breaker in case of equal cost ospf routes on palo alto ( all the route below have the same metric and all of the same type). Note ECMP is not use so only one route is choosen for routing. Couldn't find on the

...

KarimSN by L1 Bithead
  • 3990 Views
  • 4 replies
  • 0 Likes

Resolved! Traps client - uninstall password

Hi all,

 

We are currently testing Traps and during client installation, one of my colleague configured a wrong IP for ESM serveur.

Traps client is installed but as it is unable to reach server, uninstall password in not set.

 

Does anybody know how

...

VinceM by L5 Sessionator
  • 16624 Views
  • 8 replies
  • 0 Likes

Resolved! Unexpected behaviour URl filtering web

Hi,

 

We are having a unexpected behaviour with PA identifying a web:

 

"rose.pharmaintelligence.informa.com"

This web is categorize like "news". We have in our URL profile "continue". But we are seeing that this web is being denied with reason "policy de

...

URL.JPG
url news.JPG
traffic.JPG
BigPalo by L4 Transporter
  • 4887 Views
  • 10 replies
  • 0 Likes

Resolved! Bulk import applications into application group

Hi

 

Lazy request here...

 

Im trying to create application groups which will have a lot of applications in them and i wonder is there a way of easily importing a load of apps into a group, rather than typing it in one by one? I have exported the logs so

...

CRDF18 by L2 Linker
  • 5091 Views
  • 6 replies
  • 0 Likes

Global Protect Client software version

Hi all,

 

We upgraded client vpn 3.1.4 to 4.1.2. We are having 200 end users. I just need to check how many users accessing new Version. because still old version also available.

 

How many of using Globalprotect version 3.1.4 ?

How many of using Globalpr

...

Resolved! Adding device serial number to Panorama with API

I am trying to add a PA-VM to the Panorama using the Panorama API.

 

I try:

 

https://1.0.20.30.40//api/?key=LUFRPT0zAndSoOnAndSoOnAndSoOn=&type=config&action=set&xpath=/config/devices/entry[@name='all']&element=<serial>12345678012345</serial>

 

and I get

...

Resolved! Question about outbound hostname restrictions

I'm familiar with user based restrictions to outbound resources, such as youtube, but is it possible with say, a regex expression, to block access to a site like youtube through a list of machines that include a name like kiosk, as in cakiosk01, coki

...

murphyca by L1 Bithead
  • 3932 Views
  • 7 replies
  • 0 Likes

Resolved! Single firewall with core connections

I have a single firewall no HA at the moment which is connected to my 2 core routers which the routers running HSRP. How does Palo device know which device to send traffic to as it seems its sending too both causing asymmetrical routing.

clydef by L0 Member
  • 2041 Views
  • 2 replies
  • 0 Likes

Resolved! TAXII into QRadar

Hi there,

Is there any guidance for how to set up TAXII output for QRadar to ingest? I see in the latest release notes:

 

- TAXII DataFeed now translated IP Ranges into CIDR for better compatibility with 3rd party TAXII clients (read IBM QRadar)

 

 

...

Resolved! How to use Aggregate interfaces LACP?

Testing a PA-220. Create an Aggregate group with 2 interfaces.

Both interfaces connect to an unmanaged D-Link switch. And it connected to the company network.

The aggregate interface can up when LACP is not enable.

After enable LACP. It down and hover t

...

jeremylo by L3 Networker
  • 7952 Views
  • 5 replies
  • 0 Likes

Need help determining why something is blocked.

I am getting the following items blocked, but I can't tell why.  I am not blocking the games category with my URL filtering.

 

I also can't find a way to specifically allow Microsoft PE file transfers. I have also tried whitelisting the site, but nothi

...

Palo-Deny.GIF
dsmall by L0 Member
  • 2292 Views
  • 3 replies
  • 0 Likes

Resolved! How to add a new admin user via the API

I'm working on a script to deploy new Palo Alto firewalls in vmware from template, using powershell.

I'm doing this with API calls in the powershell code.

 

for instance, change hostname:

 

$hnURL = "https://myPA//api/?key=" + $apiKey + "&type=config&acti

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels