General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Palo Alto Layer2 mode and brdige vlan in different subnets

Hi All Can Palo Alto bridge two VLAN like VLAN 10 and VLAN 30 that have different subnets? or both VLAN should have same subnet? Basically what I want, I have VLAN 10 having subnet 10.10.10.0/24 and VLAN 30 having subnet 192.168.1.0/24. Both VLAN have gateway on core switch. How can I use Palo Alto firewall in layer 2 mode to do the firewalling ...

Is it possible by PA

We have a task where users should access to Internet by username and Password.I guess it is PROXY concept but is there any alternative in PA?

Screenshot_4.png
Radmin_85 by L4 Transporter
  • 2307 Views
  • 2 replies
  • 0 Likes

Generating custom reports from system logs

Hi! I need to generate weekly reports from the system logs. We need this for compliance reasons, and we have to filter out events that are logged to the Panorama system log from several firewalls. The custom reports only allow me to choose from specific databases, but not from any of the log sources, is there any way to get this done? Thanks in ...

Prevent admin from acquiring commit lock when another admin has lock

When Automatically Acquire Commit Lock is enabled on Panorama 8.0.10, is there a way to prevent an admin from creating another lock while a different admin already has one? We use shared objects almost exclusively and with four administrators are often in situations where multiple locks are getting created. This leads to reaching out to the othe...

fwmike by L2 Linker
  • 4413 Views
  • 4 replies
  • 0 Likes

Case severity

I put a case in to tac rated high and they put it on hold for 2 days so they could attend training 😮

jdprovine by L4 Transporter
  • 6334 Views
  • 10 replies
  • 0 Likes

MineMeld: What is the difference of Share Level and stdlib name with/without value

Dear All Brothers, I'm a new user to testing the MineMeld, but I cannot find any document to know the detail information. In our environment testing, we would like to implement the Feed List to deny the traffic to a high-risk IP address and our testing, and we find below information is difficult to know the difference. Case: 1. stdlib.feedHC...

Cisco ISE Miner

I noticed that a new Cisco ISE miner has been released with the latest Minemeld 0.9.28. Can someone give a little bit explanation how does this miner works ? is this miner pulling SGTs from Cisco ISE ? if yes, then what does it do with the tags ? Thanks

PBF with Dual ISP. Once Enabled GlobalProtect Clients no longer can connect.

We have setup a PBF to route traffic to a new ISP link we have in case our primary fails. Both ISP interfaces are in one virtual router. Once we change the default route to the Backup ISP and enable the PBF to forward all traffic to the Primary unless it fails, users can no longer connect to our GlobalProtect portal with the GlobalProtect clie...

blohrer by L0 Member
  • 5127 Views
  • 3 replies
  • 0 Likes

Resolved! Anomali Limo Miner Creation

Hello, First, I am not a programmer, so please keep that in mind 😉 I would like to create a miner for the Anomali Limo TAXII feed. The Anomali documentation is not very good: You can also get the benefits of Limo without STAXX. Simply: ​ Configure your TAXII client to point to: https://limo.anomali.com/api/v1/taxii/taxii-discovery-service/ ...

Capture.PNG

Resolved! API documentation

Hi, i want to query Mineneld using the API, in order to get indicators or information about the tool, to automate some reports. For example, i need to know how many indicatores we have added in the last X days, or last month..., how many indicators are in some feed... I know that Minemeld has an API, but I have not found documentation about ...

Routing Between Virtual Routers in Same Firewall

I have two Virtual routers in same Firewall I wanted to allow traffic between the Virtual routers, I configured rules to allow traffic from Trusted L3 zone in VR1 to Trusted zone in VR2 and vice-verse and put them at the top of the rules and also I configured static routes between VR's.The ICMP is working fine I can ping all of network from one...

Jama by Not applicable
  • 21605 Views
  • 8 replies
  • 0 Likes

Autofocus threat indicator timestamp does not tally with Minemeld logs

Hi all, Got a question regards to the time stamp seen on Minemeld logs then I mine samples from autofocus. Take for example, from AF-Ransomware Node in mine meld, I can see a particular hash having a "first seen" and "last seen" with a format of "1531114747953", however, when I search the SHA 256 hash using Autofocus search feature, the "Creat...

chtoh82 by L2 Linker
  • 5970 Views
  • 3 replies
  • 0 Likes

PAN-OS upgrade problem for google web services

Hi everyone i got the problem for the PAN-OS upgrade from 6.1.X to 7.1.1X, the environment deploy SSL decrypt already, also had security profile include URL-filtering, Anti-virus, Anti-spyware, vulnerability, it like normal use, but when i finished upgrade palo alto appliance, we cannot succeed running google services like google-maps, google-tr...

TysonLiu by L2 Linker
  • 8581 Views
  • 10 replies
  • 0 Likes
  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels