This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4243 Views
  • 0 replies
  • 0 Likes

Lotus Notes decryption

We have a potential customer who would like to analyze email attachments in sandbox. They are using Lotus Notes as their mail application/server. Has anyone tried decrypting Lotus Notes traffic? Because if this doesn't work the only solution is a client based sandboxing solution.

santonic by L6 Presenter
  • 6273 Views
  • 9 replies
  • 0 Likes

Swapping the roles of Firewalls in HA Pair

Hi Guys I want to swap the Active/passive roles of the Firewalls in HA pair and let it run for couple of weeks.I know that can be done by 'suspending the role' from GUI and from CLI too.want to be careful about pre-emption and donot want to break the HA pair.Does suspending teh device on active means forcing the device to be passive plus taking...

R_Sharma by L2 Linker
  • 7897 Views
  • 6 replies
  • 0 Likes

Blocking XPS file types

As of late, Ive been seeing more and more xps file types tied to phishing attempts. PAN does catch it "Microsoft Phishing Site Detection", but as a for production. XPS files are not needed. But as simlar files types are list to be blocked "pdf's, etc", theres no option to block XPS file types? Could this have been added in a certain OS version? ...

k.truex by L1 Bithead
  • 3326 Views
  • 2 replies
  • 0 Likes

Resolved! Mining Domains from mixed IP/Domain List

Hi guys, I would appreciate some help withe this issue. I wanto to mine domains from a list that has IP/Domais mixed. The list has on the top a short description whose lines start with the "#" character. Thats fine, I can use the "ignore_regex ^#" to avoid it. But the list is composed by: 10.200.1.36 domain1.com172.31.31.31 domain2.com192.168.0....

Minemeld and production installation

Hi, I'm considering how to do some of the following, if anyone has advice or links to documentation I'm not finding I would appreciate it: Export the configuration in a way that any local custom miners are also backed up, meaning the restore is a literal one liner command or something along those lines. The export backup is a manual click and wo...

chirss by L3 Networker
  • 4599 Views
  • 1 replies
  • 2 Likes

Resolved! Panorama VM-Series Multiple Interface support

Hi Guys, We are planning to deploy virtual Panorama for one of our customers on ESXi platform. One of the requirements is that customer wants to have read-only access to the Panorama management. So we were discussing the solution to attach two interfaces to the VM - one for management access to the Panorama (routed to our internal NMS network) a...

what is the best for social-networking category ,Decrypt or no decrypt

Dears In my company ,unfortunately, allow facebook.com website we note when do "SSL Decryption" for social-networking category ,There is huge utilization on CPU (Up to 85%) what is the better for this case as design : Decrypt Facebook or no decrypt ? if we do "no-decrypt" ,Can palo alto to apply the policy of deny for some application on facebo...

FW Logging Prefix list

Can any one confirm that when we configured log collector group with two managed log collector (both active and passive Panorama's) and if see the logging status on the firewalls does it show only the Active Log collector or both Active and Passive log collector.thanks

Sanssj by L2 Linker
  • 2566 Views
  • 2 replies
  • 0 Likes

Resolved! Filtering for security policies with DSRI enabled

Has anyone found the syntx to search in the security rule-base for any rule that has "disable server response inspection" enabled.I attempted using disable-server-response-inspection eq 'yes' and other modifications of that similar syntax with no luck. I know searching for log settings is possible through the similar syntax log-start eq 'yes' et...

URL recategorization

Hi, I would like to know how I can receive details on why a URL is placed in certain category and not another. I have a specific one that I submitted (nbcnewyork.com Palo Alto states is Entertainment and Arts) however the employees submitting this for recategorization state this is a news site. I would like the details so I can supply a reason...

Resolved! Custom Report - Generating a Traffic Volume per Hour report, sorted by date/time

I've been attempting to create a report requested by a client using the Custom Reports module. The client is requesting a weekly report, containing 7 days of volume usage broken down by hour. I've managed to get the data I require, using the Traffic Log database, grouping by day - however the Sort By options leaves much to be desired. Are there...

NAT allocation during a pool configuration.

Team,We have a NAT pool configured for one of the ongoing requirements. Is there a way to force this pool to allocate IP address from start to end as per new requests come in? e.g. NAT pool configured is 10.10.10.1 to 10.10.10.10IP source is anything between 192.168.10.1 to 192.168.10.10 We noticed that if the traffic source is 192.168.10.2 it c...

nson2139 by L3 Networker
  • 3562 Views
  • 4 replies
  • 0 Likes

Security Policy not HIT after work for 1 month

I got setup 6 AWS VPC with direct connect connection to on prem panorama, which is working fine for a month, and now suddently all 5 VPC disconnected from panorama in the same time. i checked the BGP and IKE all established, i can ping the panorama IP, and make sure the right security policy with specific ssl and panorama application allowed. my...

  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks