This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 598 Views
  • 0 replies
  • 0 Likes

Update List Using REST \ similar

Maybe a stupid question and\or I've missed the obvious...

 

One of the issues we have with our Palo firewalls is - when we deploy 'active' IPS rules (block-ip etc) the maximum length of time is 3600 seconds. 

 

We have a log solution that we use to t

...

apackard by L4 Transporter
  • 17432 Views
  • 12 replies
  • 0 Likes

Deploying Minemeld Using Vagrant and Virtualbox

Hello All,

 

Based on @lmori's great guide for doing a manual install of Minemeld on Ubuntu 14.04, I have taken his configurations and wrapped them in a Vagrantfile for easy foolproof deployment of Minemeld. It's a simple 3 step process:

 

  1. Install la
...

nbilal by L3 Networker
  • 12635 Views
  • 2 replies
  • 9 Likes

TAXII Feeds not working correctly.

I am having major issues with my TAXII feeds recently. A long running feed stopped working recently with an error "'unicode' object has no attribute 'get'". I have figured out that it only gives this error on any MM instances running on Trusty 14.0.4

...

kethomas by L1 Bithead
  • 3472 Views
  • 2 replies
  • 0 Likes

Resolved! MineMeld Speedtest.net host mining

Hi all,

 

I managed to install MineMeld on-prem and are playing around with it now. As a first task I'd like to setup a domain feed delivering SpeedTest.net hosts from countries we deployed Palo Alto firewalls.

 

Setting up the miner, a domain aggreg

...

oschuler by L4 Transporter
  • 3604 Views
  • 1 replies
  • 0 Likes

Resolved! Remote shutdown via CLI or through Panorama

Hello all,

I'm tasked with initiating a graceful shutdown of mutiple PA3060 firewalls following UPS-detected mains power loss via a scripted process.

 

I can login to invididual firewalls using plink but I can't work out how to enter the shutdown comman

...

what means session end reason with tcp-reuse?

Hi All,

 

i having 1 application claim that their port is stuck on Syn send status and there is possibility causing by palo alto firewall. i did check on the traffic log .. it showing session end with tcp resue. i not sure is that tcp-reuse will causin

...

port2020.JPG
traffic log.JPG
Nono by L1 Bithead
  • 7811 Views
  • 2 replies
  • 0 Likes

Unable SSH to Palo Alto firewall via SSH2

Hi everyone,

 

Now I can access webui normanly but I can't access to Firewall Palo Alto via SSH2 with the same account. When login with SecureCRT, it appears notification :  Password Authentication Failed. On palo alto appears notification : Failed pas

...

hoandh by L1 Bithead
  • 5156 Views
  • 4 replies
  • 0 Likes

Resolved! 5250 HA1 over SFP question

I have a customer who is implementing a pair of 5250 in active/passive. The firewalls are in separate DCs that are connected with fibre. It seems HA2 over the SFP ports is OK but HA1 seems to only work over the 2 AUX ports not any of the data ports. 

...

Screenshot 2018-05-02 17.14.11.png
PerryK by L2 Linker
  • 2543 Views
  • 2 replies
  • 0 Likes

Scheduling support sessions with end-users

I was just wondering if Palo Alto would consider scheduling support sessions with customers via https://www.timetrade.com/ or something similar. This would help to manage time coordinating support sessions.

Thanks,

 

Resolved! VPN over MetroE

I've been given an L2 handoff from Comcast from our data center to our co-location. I can move switched traffic over the link between the Palos at both sites with no issues. My problem comes when I try to add L3 and a a tunnel to the link. I've set u

...

xauth use on global protect tunnels

how many are using xauth on the global protect tunnels and why ? We are using it because we have users using native clients on PC's and phones (don't want to pay for the mobile license for on)? 

Let me know what you think and the pros and cons of usin

...

jdprovine by L4 Transporter
  • 4084 Views
  • 7 replies
  • 0 Likes

Bootstrap the VM-Series Firewall on ESXi

I have an OVA of PA VM-100 series version 8.0.5.

I'm trying to follow the article for "Bootstrap the VM-Series Firewall on ESXi" at:

 

https://www.paloaltonetworks.com/documentation/71/virtualization/virtualization/bootstrap-the-vm-series-firewall/boots

...

  • 23934 Posts
  • 113 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks