General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 428 Views
  • 0 replies
  • 2 Likes

Create new prototype for Rest API and simple URL

Hi Experts,

 

I have a customer who wants to create new prototype for this customer. 

customer requirement is very simple but, it's very hard to me. 

 

first of one,

customer said spunk is using Rest API, below is feeds from splunk 

curl -k https://s

...

jilim by L1 Bithead
  • 3844 Views
  • 3 replies
  • 0 Likes

Resolved! How do you use the new predefined Dynamic IP lists?

Greetings all,

 

I'm wanting to use the new Palo Alto provided dynamic IP lists to block known malicious or high risk IPs but, when creating a security policy, I can't seem to get it to appear in the list for selection.  I've tried copy/pasting the nam

...

jsalmans by L4 Transporter
  • 7024 Views
  • 11 replies
  • 0 Likes

SSL decryption non standard ports

Hello all,

 

I am wondering if palo can identify and decrypt encrypted traffic on non-standard ports(other than 443)? In other words, does firewall decrypt all encrypted traffic traversing through that matches rule?

Resolved! show user group name not showing user list

Hello,

 

We are not getting the list of individual users in the command: show user group name <name>

 

> show user group name "CN=adminstaff,OU=staff,OU=security,OU=Groups,OU=College,OU=Schools,OU=CEWA,DC=test,DC=edu,DC=au"

 

short name:  test\adminstaff

 

s

...

Farzana by L4 Transporter
  • 7592 Views
  • 1 replies
  • 0 Likes

PAN-2020 site-to-site with Meraki Cloud managed firewall

Hi all,

Has anyone had success establishing a site-to-site tunnel between an PAN firewall and a Cisco Meraki Cloud managed firewall?  I've been messing with it for most of the day and have not found much luck.  I've added a third party peer on the Mer

...

cmateam by L3 Networker
  • 8307 Views
  • 7 replies
  • 0 Likes

Resolved! Configuring OCSP

I am trying to configure OCSP and I am a little confused.

 

I have added an OSCP responder. 

 

It appears the second step is to allow the Firewall to use it by configuring Device-Management->Interfaces.  However, for most of my settings, I am using a Ser

...

Resolved! Minemeld with Proxy

Is there any way to perform the minemeld install from behind a proxy? I am deploying a minemeld node in a datacenter where internet access is only available via squid proxy.

 

Thanks,

Nasir

nbilal by L3 Networker
  • 16413 Views
  • 12 replies
  • 0 Likes

VPN SITE TO SITE PALO ALTO NETWORKS

Hello,

 

I configure a VPN tunnel between two firewalls Palo alto Networks . The tunnel status is up but the other network is unreacheable.

I configure the tunnel on the trust zone . I restart the firewalls without result . The first PA-500 with PANOS 7

...

ra7oub4 by L2 Linker
  • 7643 Views
  • 7 replies
  • 0 Likes

Exception for threat type "file"?

Hi,

 

I have following in my logs:

 

Threat tpye: file
Threat name: CSV file
ID: 52032
Severity: low
File Name: xyz.csv

 

For Vulnerability Protection and Anti-Spyware I know how to easily create exceptions for specific IPs/URLs. Is there a way to easily creat

...

Resolved! HA2 Backup Port Link Speed

Does the HA2 backup port need to be the same link speed as the primary HA2 port?

 

Customer is wondering if it is possible to use a 10G SFP+ port to backup the 40G HSCI port.

 

I cannot find anything in the documentation discussing this and don't current

...

  • 23698 Posts
  • 110 Subscriptions
Top Solution Authors
Labels