Resolved! Seeing user Data by PCAP and SSL decryption
Need to know can we see or scan user Data if we do PCAP on the SSL decrypted traffic?
Need to know can we see or scan user Data if we do PCAP on the SSL decrypted traffic?
Hi, We have 2 PA VM100 devices. For some reasons we are not able to configure more network interfaces at the moment.Can I create an active-passive HA cluster just using the Management interfaces in the way that the second device receives all configuration updates from the first device and is ready to be "activated" manually in case of failure of...
On port based firewalls we can use telnet from command prompt like telnet 2.3.4.5 22 to check if port 22 is open or not. what is best way to check from PA? we have some users who use this old method
Hello, I wrote a local Taxii Client class that uses Cabby.I can see the prototype in web UI prototype list.I cloned it tried to commit.But it says 'Unknown node class'.I added my class in /opt/minemeld/engine/core/nodes.js then restarted minemeld.Still no succcess.
Hello Is it possible that Wildfire sent me alert information from other companies? because I see events in the console Regards.
What feature on the PAN 5060 lets you see which address pairs are consuming the most bandwidth?
Hi Dears, I have a issue regarding the log forwarding. Paloalto logs are forwarded to splunk SIEM in our environment. We were running panos 8.0.10 and the log forwarding was working as expected. Recently we upgraded to version 8.0.12 which is a TAC recommended version. Since upgrade PA appliance is not forwarding the logs in real time. Instead...
I am writing to you because in the company where I work we are having a problem while using Global Protect, some of my colleagues are no longer able to connect and receive the error you see below: 80) 11/20/18 09:55:43:156 Debug(2301): IPADDR=cosbppan01.net.americas.agilent.com,PORT=443,URL=/global-protect/prelogin.esp,POST=1,PROXY_AUTO=1,PROXY_...
Hi everyoneI’m working with a Palo Alto 3250 (Pan-OS 8.1.1).I made integration with LDAP, and configurated group mapping setting.My problem is when I want add any group or user in a security policy the object appear like cn=Admin,ou=groupadmin,dc=example,dc=com and I want to see just the user or the group, not visualize the full path of the user...
Hi all, I'm trying to create Nat rule for source translate when the source is address group and it will not be bi-directional. The address group include 2 address from objects.The source translate is Static-IP tried to put object and specifric IP address with subnet (/32) I keep receiving the following error, also tried to use two-source address...
I'm running into an issue where I can pull in indicators from autofocus by creating a minemeld miner, the only problem is that I am getting a lot of windows.com and microsoft.com domains in the list. I've had the search from autofocus entered as malicious/grayware/phishing, but still the miner is pulling in microsoft domains and windowsupadate....
I have the User-ID agent on one of my domain controllers and I have the firewalls set to get the ID from that and it gets some ID's but doesnt seem to get all. So I thought maybe add active directory and exchange server monitoring. But I get errors in the panorama sysem log that just say connect-server-monitor-failure I set the account to domai...
Hello allwe have mobile clients with GP which use corporate notebooks at home .It was configured user logon option to force the notebook to connect through GP when it connects to home WI-FI When the same worker comes back to workplace and plugged in the ethernet cable they still use the same GP networkIs there any way to force the client noteboo...
I'm trying to build a new Minemeld box on a fresh install of Ubuntu 16.04 (also tried Centos too) and wehn I run the ansible installer I get to a poin tthen the installer fails with this output, any ideas what's wrong? FWIW, I've tried installing as root and as a non-root user and am seeing the same results. TASK [minemeld : typings install]...
Good Day to everyone.I have this issue almost every day. It doesn't happen with all users at one time.After restart, everything is working as it should work.I have probe enabled(20 minutes) and Enable User Identification Timeout(720 minutes).What can be an issue?
| Subject | Likes |
|---|---|
| 4 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 4 | |
| 3 | |
| 3 | |
| 2 | |
| 2 |

