General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 422 Views
  • 0 replies
  • 2 Likes

UDP log that hit any deny rule and show allow

Hello, i have a question about UDP session

 

rule 34

untrust any

trust any

app icmp, traceroute, ping

service any

action allow

 

rule 214

any any deny

 

 

 

you can see allow log hit rule 214

i found similar case about tcp.

https://live.paloaltonetworks.com/t5/Manag

...

20180616_111325.png
hbshin by L2 Linker
  • 1926 Views
  • 3 replies
  • 0 Likes

World Cup 2018

Anyone have a custom APP-ID to block world cup 2018? or is palo going to release one?

Ntripp by L1 Bithead
  • 4340 Views
  • 5 replies
  • 0 Likes

Resolved! Taxii Feed Error

Dear all,

 

today my Taxii Output stopping working, in minemeld-engine.log i see these errors:

 

2018-06-15T13:23:33 (24179)actorbase._actor_loop ERROR: CyberSOC-taxiiDataFeed-Test - error executing ActorCommand(command='update', kwargs_={u'source': u'MI

...

rafy92 by L1 Bithead
  • 5534 Views
  • 5 replies
  • 0 Likes

Failed to resolve domain name

Hi,

i get in the system monitor a message Type dnsproxy and event resole-fail mgmt-obj

 'Failed to resolve domain name:server.domain.com after trying all attempts to name server(s): IP_from_internal_DNS  8.8.4.4 '

and i dont know why.

I have set and Obje

...

Global Protect and CCMCACHE

I have a user that I am trying to reinstall Global Protect (v.4.0.6-7) for. However, whenever I try to install it, i get  message that it is trying to find globalprotect64.msi in c:\windows\ccmcache11. CCMcache11 does not exist. So I pointed the inst

...

Arena225 by L0 Member
  • 3063 Views
  • 3 replies
  • 0 Likes

OSPF Adjacencies Flapping over IPSec Tunnel

Hello,

 

I would like to open this issue up for discussion, and possible resolution.  We have an IPSec Tunnel between two Palo Alto Firewalls (PAN 3050 & PAN 820), and we advertise OSPF routes to interconnect both sites, over the tunnel.  This was work

...

want to upgrade to 8.0.X

Hey guys,

I have a HA pair of 3020s with 7.1.7

and a single 820 firewall with 8.0.2

 

Which version can you recommend for the 3020s and the 820?

 

8.0.5?

8.0.6?

Is there anything to be aware of?

MPI-AE by L4 Transporter
  • 5140 Views
  • 14 replies
  • 0 Likes

Resolved! I have two questions. about UDP Application & policy action

Hello, I have two questions.

 

1. How can Paloalto Firewall identify UDP Applications (ex : sip, ntp, sip, dns, snmp, tftp..) with one packet from source received ?

 

2. when i configure service any What is difference policy action deny & drop?

 

Best rega

...

hbshin by L2 Linker
  • 2227 Views
  • 1 replies
  • 0 Likes

PA-5200 QSFP+/HSCI DAC Cable type

Hi,

 

PA writes in his Front Pane description HSCI port "PA-5220 firewall —One QSFP+ 40Gbps port (supports only a 40Gbps (QSFP+) transceiver or QSFP+ active optical cable)." and nothing for the QSFP+ ports.

 

Does PA-5200 also support 40G QSFP+ DAC Passi

...

Resolved! VPN set up when other party uses L2TP

Hi Members

 

I have a vpn to set up when the peer end has asked for L2TP Ipsec. The other end is using some windows based built-in VPN.

Can this be set up? Does PAN support L2TP?

 

 

Thank you

R_Sharma by L2 Linker
  • 2454 Views
  • 2 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels