This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

SSL forward proxy CA cert

My enterprise has a CA root certificate pushed out to all clients. I am now planning to implement ssl decryption and want to import same cert and keys onto firewall for ssl forward proxy. what are the downsides of doing this? is it a good idea to use CA signed cert or the one I mentioned above? TIA

How to configure dynamic NAT IPs

I have a german ADSL connection and would like to make it accessible from outside. My server has internally the IP 10.0.109.111. From outside it is accessible via a DynDNS name because the public IP changes daily.My router has the 192.168.4.1 IP and the PA 200 on the eth3 has the IP 192.168.4.2. From within the Internet I can also access this IP...

2018-06-07 16_25_52-PA220-MZH-BW.jpg
2018-06-07 16_25_41-PA220-MZH-BW.jpg
2018-06-07 16_25_23-PA220-MZH-BW.jpg
2018-06-07 16_24_59-PA220-MZH-BW.jpg

Configure DUAL ISP

We have now two ISPs And we want to configure PA so that when first ISP is down the traffic (in and out) passed to the second ISPCan you give me please a guide about it?

Radmin_85 by L4 Transporter
  • 5507 Views
  • 10 replies
  • 0 Likes

Empty Scheduled custom CSV reports

I configured an 'Email Scheduler' for my custom reports which will be sent on a monthly basis. They will be sent correctly in .pdf format, but when I choose .csv in my 'Report Group' I receive empty .csv files. Is this a bug or a misconfigured configuration?

Resolved! Parsing of US CERT STIX files

Hi all, We have a wish for parsing the STIX file, which is provided in this alert from the US CERT: https://www.us-cert.gov/ncas/alerts/TA18-149A I have tried to research it myself, but I can't seem to find a way to do this in minemeld. Any ideas?

borising by L4 Transporter
  • 6042 Views
  • 2 replies
  • 0 Likes

Resolved! IP addresses disappearing from miner

Hello, I've created a miner to add IP address based on stdlib.listIPv4Generic and class minemeld.ft.local.YamlIPv4FT. Default configuration (just cloned). This week, some IP addresses just disappeared from this miner. We added an IP address to the miner last 21st, on the 22nd of this month the IP address disappeared from the miner. Older ind...

PA VM 6.1.0 Routing issues

Hello Experts,I am stuck with a Palo Alto test setup. I have a 6.1.0 VM version running on VMW. I have simulated the inside interface by a 10.10.0/24 subnet—- the two hosts are a **bleep** Small Linux with IP 10.10.10.190 (/24) which is connecting to the PA VM Ethernet1/1 L3 interface with IP 10.10.10.200 (/24). VMnet2 is used for managment inte...

Resolved! Firewall intercepts Virus between networks. False Positive???

Dear Palo Alto experts..., We have various systems in our LAN seperated by our Palo Alto firewall. In the last 24 hours the firewall detected 2.7K times the virus "Virus/Win32.WGeneric.rktkq" The systems are scanned for inventory by two programs. Spiceworks and PDQ inventory. The scan server is on one side of the firewall. The other servers are...

2018-05-31 10_39_51-FW-PA500-1.png
2018-05-31 10_35_11-FW-PA500-1.png

The WildFire module price

Hello, сolleagues!I am interesting in the PaloAlto and I am only starting to use it. IPlease say where can I buy subscription to the The WildFire module ?Can I buy only The WildFire subscription or I must buy smth else?If anybody know where is a page with prices - please say. I found the page with description https://www.paloaltonetworks.com/pro...

Resolved! X-forwarded-for not showing results

We use F5 with its VIP interfaces in DMZ and is doing SSL offloading (presents a cert on the webserver's behalf allowing plain text traffic to be inspected). As in below example, external source(1.1.1.1) acesses 2.2.2.2(PA NATS to 10.10.10.10 of the F5 VIP). F5 then does SSL offload and SNAT for communication with server, but the source interfa...

image.png
raji_toor by L4 Transporter
  • 5813 Views
  • 4 replies
  • 0 Likes

Resolved! Is there a protoype that can read this XML format?

Before I go down the route of writing a prototype (or attempting to), I was wondering if there was a prototype that I could use to read an IP list in this XML format. I would be interested in pulling out the address and country: <?xml version="1.0" encoding="utf-8"?> <rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" ...

Running MineMeld from OVA

Good afternoon! I have a quick question about running MineMeld from the OVA. We have some pretty strict policy against installing via GitHub and, the best way for me to get MineMeld installed, would be to use the OVA method. I'm new to running it this way. After I get MineMeld up and running on this VM, can I upgrade MineMeld to the latest ...

  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks