This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4118 Views
  • 0 replies
  • 0 Likes

Resolved! Get vulnerability description and signature

How do I get the signature on what a Vulnerability has triggered?I can only see the Threat Name and its ID in Panorama and look up the ID in the Customer Portal.But there does not stand what combination or findings actually lead to this attack. Where can I get this information? Thanks in advance.

Missing IP's in Minemeld feed

We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL. https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist Every few months i got notified to comunication with one of theses IP's and when i check the zeustracker.abuse.ch shows the IP in the list but the output is ...

image.png
image.png
raji_toor by L4 Transporter
  • 5462 Views
  • 2 replies
  • 0 Likes

Not seeing a customized prototype in GUI

Hello team! I hope you are doing alright. Currently, I am trying to add a customized miner prototype and while creating it in the /opt/minemeld/local/prototypes/ folder, I am not able to see in added in the GUI. What could be the problem here? Thanks in advance! Best regards, Petar

where to define a static public IP for IPsec

Hi I have to build up a IPSec tunnel with a partner. So at Network -> Interfaces -> eth 1/1 I have my connection to internet with a /28 Net. I call it for example 12.34.56.144/28 net. There the router from my isp is IP 12.34.56.145. I will build up my tunnel on ip .146. Now on the eth 1/1 I define the IP 12.34.56.146/28 so the complete /28...

Resolved! Large Varying IP Pools for DNS (CB Defense dev-prod05.conferdeploy.net) And Firewall Rules[SOLUTION]

First I would like to say that we are pursuing this with CarbonBlack and we have worked with PAN support already to see what our options are. This is as much an informative post as it is to see what other people think and are doing.For the record PAN support suggested changing the DNS entry from a lookup to a FTP file check. We would prefer to...

BrianRa by L3 Networker
  • 12916 Views
  • 10 replies
  • 0 Likes

Missing IP's in Minemeld feed

We pull Zeus IP's using minemeld. Statics page shows the current number of IP' 109, which is the same as hosted on this URL. https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist Every few months i got notified to comunication with one of theses IP's and when i check the zeustracker.abuse.ch shows the IP in the list but the output is ...

image.png
image.png
raji_toor by L4 Transporter
  • 2779 Views
  • 3 replies
  • 0 Likes

Resolved! Understanding Throughput

i need help with understading how threat prvention throughput works ,i mean for all integrated features(ips,antivrus,..) what is the throughput of each alone ,as in specsheet only total throughput is mentioned

2FA on both portal and gateway

If you have two factor auth on the portal and the gateway without using the cookie or passing the auth from the portal to the gateway will it ask you to authenticate twice?

jdprovine by L4 Transporter
  • 6475 Views
  • 15 replies
  • 0 Likes

Resolved! DShield list

Hi guys, recently I've noticed a strange behaviour in my DShield miner (dshield.block prototype, https://www.dshield.org/block.txt). I have 2 MM (0.9.46 and 0.9.48), and both present the problem. Time to time, I can't precise the period, in fact it is not regular, my miner presents 0 indicators mined. First, I would like to know if somebody else...

GlobalProtect Client with Android 9 (pie)

Is PAN abondoning the GP mobile client on Android? The last update was a while ago, the UI is just horrid and it crashes under Android 9. Several reports of the issue have been made but all is quiet so far. Does anyone have any inside info? I was using XAuth but after upgrading to 8.1.3 I am getting funny behavior so I was going to give the GP c...

hshawn by L4 Transporter
  • 3013 Views
  • 3 replies
  • 0 Likes

FTPS connections are not working

Hi, We have a inbound NAT for FTPS but the connections are not working. We can not see any deny in FWs.We dont have decrypt SSL configured. I think it shouldnt be necessary, right?Policy configures has "ssl" and "ftp" allowed. this is the ftp log: Why ftps connections are not working?? any dynamic port or something like that?

Logs ftps.JPG
BigPalo by L4 Transporter
  • 4591 Views
  • 3 replies
  • 0 Likes

Resolved! problem matching rule with user-id

hello, I have a problem matching rules using user id, in uadebug.log I can se this warning:[ Warn 2813]: Device thread 1 replied get BloomFilter msg with no BFsomeone know what that means? Thanks

Marivi by L2 Linker
  • 6206 Views
  • 1 replies
  • 0 Likes

SSL proxy allocation error

I had ssl decryption in place on PA_5020 and it seems like during peak times, my internal data traffic is reaching max ssl decryption session limit and those beyond the limit are shown as decrypt error and are sent un-decrypted. Is there any solution for this besides hardware upgrade, offload ssl decrypt to proxy? Thanks.

IKE traffic recognised as unkown-udp since September 6th

Customer had an application based rule for VPN traffic. However since September 6th the traffic on UDP 500 is no longer recognised as IKE. Some VPNs stopped working, some still work even if they shouldn't really. Release notes of last 3 content updates don't mention anything about changes to IKE. Anyone has similar problem?

santonic by L6 Presenter
  • 2364 Views
  • 3 replies
  • 0 Likes

Can someone please recommend an Email Server Setting that will work for Email Threat Notifications

Can someone please recommend an Email Server Setting that will work for Email Threat Notifications on a PA-220 ?I have tried the Gmail Server - ASPMX.L.GOOGLE.COM and it is not workingPlease provide a step by step example for how i can configure email threat notificationPlease provide some email servers that does not use TLS as wellthat works wi...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks