General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 917 Views
  • 1 replies
  • 8 Likes

Building New Polices for New Firewall Implementations

Is anyone using simple applicaiton filter groups to build policies for new firewalls? I find myself looking at tap traffic all day trying to build policies on what I see users hitting and its cumbersome. Is anyone just creating a applicaiton filter c

...

Policy with user ID don't work in palo alto networks

Hello,

 

I have configured the users in the office to be identify with Active Directory. I can see the users identification in the Monitor tab. But when i set a rule with user AD identifier don't work!

 

I add two rules :

 

rule 1: deny access for a specif

...

ra7oub4 by L2 Linker
  • 3144 Views
  • 7 replies
  • 0 Likes

Resolved! Report bug to Palo Alto support

Hi,

 

I think we are hitting a bug in versions 8.0.4 and 8.0.5. In firewall with several Vsys, only admins can see the logs (traffic, threats...). If you create an admin for one vsys, they cant see any logs.

 

If any PA team read this  

Resolved! Global Protect at the inside truted interface

PAN 5060

Outisde untrusted interface 5.5.1.77

Inside trusted interface 10.10.1.1

 

Wifi guest network inside 10.10.5.0/24

 

Most Global Protect corporate users go to ourvpn.foo.com 5.5.1.77.

 

WiFi users normally PAT to the Internet using that same interface

...

palomed by L3 Networker
  • 1681 Views
  • 2 replies
  • 0 Likes

Resolved! Content Apps & Threats Unknown

Hi,

 

We just several FWs in which we see any content package as "unknown" and we can not delete it???

Why this package is unknown and why it can not be deleted??? Here an example:

 

MG.JPG

Vulneability SQL Injection

Hi,

 

we have done some Vulnerability assessment on firewall with PAN-OS version 7.1.8 version. And found below vulnerability for which we are not able to find CVE or solution. Help me to find a solution for below:

 

Vulnerability : CGI Generic SQL Injec

...

using cli to enter x509 certs

Trying to use

set template TemplateName config shared certificate "CertName" public-key "xxx

"

 

I am getting it from a show template . but the string value is multiline so when i try and copy and paste. it fails on the second line

 

How do I work around t

...

Panorama templates and Device Group Push

Can someone point to the documentation on the things panorama will push and what you need to do on the local devices that panorama wont push? I have noticed a few things today like interface states, I set my interfaces from down to auto in Panorama a

...

Citrix Offloading

Hi,

I'm having several problems with suddenly disconnections between users and xenapp citrix through PAN. Looking some information about that I think that is related about ASIC treatment of traffic... Is possible turn offload traffic only for citrix t...

nanukanu by L2 Linker
  • 1981 Views
  • 2 replies
  • 0 Likes

Resolved! Total Application Time

I'm trying to figure out the total application time of some specific applications. For example, for the last 7 days I'd like to know for a particular subnet how much time was spent on YouTube. Is this possible? So I'm looking for something to tell me

...

tacacs accounting

kind of stuck looking for the place to set up accounting to send to the tacacs server, anyone else seen this or just used panorama for the logging?

WF-500 - 7000 files\day? That is really the limit?

Hi,

According to wf-500 wildfire appliance document the machine supports 7000 files per day.
In my organization the machine actually scan more then 15,000 per day so how this is really work?
I see that the memory is always around 75% but the Cpu is only...

Erez by L1 Bithead
  • 1466 Views
  • 1 replies
  • 0 Likes

Traps local analysis behavior

Hi,

 

Last week we had a problem with TRAPS. We have ESM in the cloud, and we have traps agents in diferente sites. One of these sites had a problem with the internet, so traps could not contact the cloud. The case is that we have executables that trap

...

Top Solution Authors
Top Liked Authors