General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

SSL forward proxy CA cert

My enterprise has a CA root certificate pushed out to all clients. I am now planning to implement ssl decryption and want to import same cert and keys onto firewall for ssl forward proxy. what are the downsides of doing this? is it a good idea to use

...

How to configure dynamic NAT IPs

I have a german ADSL connection and would like to make it accessible from outside. My server has internally the IP 10.0.109.111. From outside it is accessible via a DynDNS name because the public IP changes daily.
My router has the 192.168.4.1 IP and

...

2018-06-07 16_25_52-PA220-MZH-BW.jpg
2018-06-07 16_25_41-PA220-MZH-BW.jpg
2018-06-07 16_25_23-PA220-MZH-BW.jpg
2018-06-07 16_24_59-PA220-MZH-BW.jpg

Configure DUAL ISP

We have now two ISPs 

And we want to configure PA so that when first ISP is down the traffic (in and out) passed to the second ISP

Can you give me please a guide about it?

Radmin_85 by L4 Transporter
  • 3759 Views
  • 10 replies
  • 0 Likes

Empty Scheduled custom CSV reports

I configured an 'Email Scheduler' for my custom reports which will be sent on a monthly basis. They will be sent correctly in .pdf format, but when I choose .csv in my 'Report Group' I receive empty .csv files. 

 

Is this a bug or a misconfigured confi

...

Resolved! Parsing of US CERT STIX files

Hi all,

 

We have a wish for parsing the STIX file, which is provided in this alert from the US CERT:

https://www.us-cert.gov/ncas/alerts/TA18-149A

 

I have tried to research it myself, but I can't seem to find a way to do this in minemeld.

 

Any ide

...

borising by L4 Transporter
  • 4890 Views
  • 2 replies
  • 0 Likes

Resolved! IP addresses disappearing from miner

Hello,

 

I've created a miner to add IP address based on stdlib.listIPv4Generic and class minemeld.ft.local.YamlIPv4FT. Default configuration (just cloned).

 

This week, some IP addresses just disappeared from this miner.

We added an IP address to th

...

PA VM 6.1.0 Routing issues

Hello Experts,

I am stuck with a Palo Alto test setup. I have a 6.1.0 VM version running on VMW. I have simulated the inside interface by a 10.10.0/24 subnet—- the two hosts are a **bleep** Small Linux with IP 10.10.10.190 (/24) which is connecting to

...

The WildFire module price

Hello, сolleagues!

I am interesting in the PaloAlto and I am only starting to use it.

 

IPlease say where can I buy subscription to the The WildFire module ?

Can I buy only The WildFire subscription or I must buy smth else?

If anybody know where is a page

...

Resolved! X-forwarded-for not showing results

We use F5 with its VIP interfaces in DMZ and is doing SSL offloading (presents a cert on the webserver's behalf allowing plain text traffic to be inspected).  As in below example, external source(1.1.1.1) acesses 2.2.2.2(PA NATS to 10.10.10.10 of the

...

image.png
raji_toor by L4 Transporter
  • 3672 Views
  • 4 replies
  • 0 Likes

Resolved! Is there a protoype that can read this XML format?

Before I go down the route of writing a prototype (or attempting to), I was wondering if there was a prototype that I could use to read an IP list in this XML format.  I would be interested in pulling out the address and country:

 

<?xml version="1.0...

Running MineMeld from OVA

Good afternoon!  I have a quick question about running MineMeld from the OVA.   We have some pretty strict policy against installing via GitHub and, the best way for me to get MineMeld installed, would be to use the OVA method.  I'm new to running it

...

  • 24308 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels