General Topics

Resolved! Run MineMeld over HTTP

I'm in the process of running multiple MineMeld behind a server load balancer. I want the backend MineMeld servers to run the application over HTTP. The reason for this is I want to offload SSL from the servers. Currently, nginx redirects HTTP to HTT

Resolved! Platform Upgrade to 3200 and 5200 series platforms

Lately a few customers are planning an upgrade from 3000  to the new 3200 and 5200. Often they run 7.1.x and the new platforms only support 8.1.x. Normally these are high sensitive environments and the request is to shift the existing configuration w

Resolved! I am unable to view traffic in monitor

I notice today with our Palo Alto devices. I can no longer monitor traffic on the monitoring tab using either the Traffic or URL Filtering options. I’m getting an error that states “Invalid XML response from server”. Do you know of a quick way that I

Resolved! Where does Critical Issue List go?

Hello Palo Alto,

I was using following link to check critical issues.

https://live.paloaltonetworks.com/t5/Integration-Articles/Critical-Issues-Addressed-in-PAN-OS-Releases/ta-p/52882

I can't access to it anymore. How can I collect the latest critical

Resolved! Captive-Portal Error with MP Software Process 'keymgr' and 'l3svc' Problem

Model : PA-500

OS: 6.1.13

Captive-Portal/GlobalProtect are used

Hi. I've got some issue from my customer about Captive Portal Issue.

The customer said, the Captive-Portal authentication screen, couldn't be seen for few days,

even if portal page open, li

Resolved! Recommended stable release for PAN-OS 8.0.x

Hi,

I am planning on updating PAN-OS on our Panorama virtual machine and our two firewalls and would like to know what the most stable release for PAN-OS 8.0.x is? Any help with this query would be greatly appreciated.

Resolved! nt-autorität\anonymous-anmeldung

Hello Guys,
I have sometimes a problem with the user identification on the PA500. Our Users can only browse the internet with your AD-User. Sometime the User is lost on the PA. The User "nt-autorität\anonymous-anmeldung" is used? Why? How can I find a

Resolved! User-ID Agent exclusion list

Hi All

Is it good practice to exlude all server subnets in exclude list as I believe we are not interested in administrators to IP mapping for servers?

What could be the user cases for exlcude list on firewall and user-id-agent?

Resolved! User-ID based policies exclusion

Hi

I want to enable user-id features in all security policies. But I have a question, from users to Domain controller, I should not use user-id feature? as firewall does not know about user-ip mapping untill users are login to domain controller?

Also

Resolved! Zscaler and Minemeld v2

Hello,

I'm trying to get simple data from https://ips.zscaler.net/pac/json. I tried to exploit the extractor with http://jmespath.org/ but really, I don't think I need an extractor here, just indicator "ip".

But it doesn't work :

Resolved! Issue with Windows Insider Updates when using SSL Decrypt

PAN-OS 8.0.x

We have users not receiving updates for Windows Insider Program builds when SSL decryption is enabled.  

Does anyone know what changes need to be made to make this work?  I've solved a few other SSL decryption issues where decrypt-excepti