Resolved! Monitor Logs
How do I change what gets logged in the monitor URL logs.. All I see are block url messages.. I need to see all traffic.. Thanks
Discussions
Panorama VM - 8.0.x - How long can we run in Legacy Mode?
We currently have a Panorama virtual machine with 2TB of storage runnint 7.1.x. I know there are changes to the log database in 8.0.x. We also have some newer PA firewalls that only run 8.0.x, so we would like to upgrade Panorama. How long can we
...Check patchs installed HIP
Hi,
We configured the HIP module in Palo Alto but is not able to detect patches installed on Global Protect clients sometimes.
There are clients, connected to the VPN GP that if it is able to see the patches, in contrast there are others that does not
How to find source of high open sessions and/or throughput
If your Palo Alto firewall is experiencing an unusually high OPEN session count, and/or high throughput, what is the best way to determine the source or destination at the same time of the event?
We have most of our security rules set to log at ses
...Resolved! web access for local administrators
We have our web access rules setup to match up with AD groups, so if you’re not in an web access AD group then you can’t get on the internet.
The issue our PC support guys have is when they log into a PC or laptop as a local administrator they will n
...Link Failure - Syslog
Hey all!
I have a PA-3020, eth1/1 and eth1/2 are an aggregate (ae1).
on the switch, it's a Port-channel.
I want to be informed when one of both interfaces is down.
So I set up a syslog server and all system logs are forwarded.
For testing purposes, I
...How to combat VPN’s that use spoofed SNI?
Hi all,
My environment has a large fleet of iPads in an educational institution. We have restricted internet (no social media and so on) so the students spend time finding ways around it. We thought that bringing the PA unit in and enabling decryptio
...Resolved! arp issue with PA Active/Active
Hi
2 PA-3060's, setup in Active / active
I have a vlan 213 with 10.172.213.0/24 assigned to it
I have .2 and .3 assigned to the PA's and .1 assigned as a HA Virtual ip .
I also have 3 virtual machines, app1 app2 app3.
app1 and app3 can arp 10.172.213.
...Suspicious Packet with MAC address all zeros
Hi All,
I monitor networks for my client, recently I discovered some suspicious outbound traffic from internal to a known malicious host, although the packet was dropped on the PA. the logs I have showing that the packet's source IP as the internet's
...Resolved! Blocking All Internet Traffic from certain PCs
I have several older machines (XP) that are used for special purposes that cannot be be upgraded. Even the hardware cannot be upgraded or replaced (running on old dell dimenion desktops). These machines do not need access to the internet but they ar
...Resolved! Creating a block timeout for mac addresses for malicious behavior
Hello,
I was interested if there was a way to block a mac address of a device for malicious behavior? Bacially if i have a user on a guest connection and they are searching things they shouldnt, they could be blocked for 5 minutes or whatever and the
...Setting Up MS DirectAccess
Trying to configure DireectAccess (Windows Server) to work but I believe it is failing due to the Palo Alto. I created a custom application and application override for the ports needed but still failing. Per a Microsoft Document, "the firewall has t
...Resolved! Seperate Internet Connections
Hi
First time here, so after some advice.
We have a Palo Alto 3020 providing internet access and DMZ, all is running fine.
I have to order another internet circuit, which is the best way to connect / configure this?
1. Create an LACP port channel on the
...Resolved! Subordinate CA creation for SSL Decryption
Hello,
I am attempting to set up SSL Decryption on a new firewall and trying to create a Subordinate CA with our internal Microsoft Certificate Services. I am in the process of generating the CSR on the PA, but I am a little confused on what the C
...Virtual Wire + vPC
I’m considering the following ( Active / Passive Virtual Wire + vPC ) configuration in my primary Datacetner. I really don’t want to lose the current vPC redundancy that I have in place today. Today I can cut, unplug, power off, kick, shutdown, and
...
-
crasmussen
on:
Let's Celebrate CX Day - A day all about you!
- Francis559 on: Error message when clicking on details on risk details
-
BPry
on:
Create admin user for just a vsys
-
SteveCantwell
on:
palo alto PA-220 update problem
-
SteveCantwell
on:
"SecureDriveService.dll"
-
SteveCantwell
on:
Palo Alto 10.2 - Import config from Palo Alto 5.0
- MichaelPDean on: dns-signature cloud service unavailable
- Shubham_10 on: How to set Portal address in Global Protect using powershell
-
Astardzhiev
on:
Global Protect authentication happened two time while using RADIUS
-
BPry
on:
Unable to manually upload PAN-OS software into the firewall getting "upload file size exceeds system limit error"
Copyright 2007 - 2022 - Palo Alto Networks