General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1700 Views
  • 0 replies
  • 0 Likes

Resolved! Asterisk Wildcard Error

When Creating a Custom URL Category, I am entering a wildcard infront of the url *lans.com.au

 

However when attempting to apply this wildcard, I am getting this error

 

URLBlock -> list '*lans.com.au' is invalid. Consecutive asterisks (*) in a URL wildc

...

Pooch87 by L0 Member
  • 4235 Views
  • 2 replies
  • 1 Likes

Resolved! Policy Export

Hello,

Is there way to export a policy from a PAN device in a read-able format? We are in the process of cutting over a new PAN internet firewall and all the rules had to be created by hand (from the previous vendor model). I'm looking for the ability

...

CRHC by L4 Transporter
  • 6793 Views
  • 5 replies
  • 0 Likes

VPN Issue Between PA and WATCHGUARD

Dear All 

I'm facing one issue relate to VPN between PA and WG.
I am using 3DES/SHA1/PFS2, it is not working till i disable PFS-2 on Phase-2.

2018-05-10 10:44:10.483 +0700 [DEBG]: { : 40}: keyacquire received: x.x.x.x[0] => y.y.y.y[0]
2018-05-10 10:44:10

...

Resolved! Server Log Monitor Frequency and User-ID

 

What recommended value for Server Log Monitor Frequency if we increase the from 2 Sec to 10 Sec ?

 

 

What is the relation between this queries and User Identification Timeout of 600 minutes and Server Log Monitor Freq?

 

 

 

 

 

 

NavidAlam by L3 Networker
  • 5315 Views
  • 1 replies
  • 0 Likes

Transparent Proxy

Hello,

 

I am new with PA family and currently evaluating PA-3220 / PA-3060 appliance

I would like to know if i can implement transparent proxy feature with the above applaince for all my users including branch office without making major changes to net

...

Resolved! Migrating from sub-interface to L3 interface

Hi,

 

We have pair of PA in HA mode, we are going to move one of the sub-interface to a L3 interface. is it possible to do this without any downtime? I am considering below steps

 

  • take out sub-interface from monitored interface (to prevent failover)
  • conf
...

CHACHA20_POLY1305 Support?

Anyone know or heard when we might get CHACHA20_POLY1305 cipher support for Inbound Decryption?

 

I finally came across a server using it... my Enterprise Services team is setting up a Papercut on-prem server and it seems to be running multiple web ser

...

jsalmans by L4 Transporter
  • 3131 Views
  • 1 replies
  • 0 Likes

MineMeld-engine FATAL

Hello Folks,

 

I recenlty ran through the MineMeld installation onto Ubuntu 14.0.4. I noticed during the installation of MineMeld a few errors or notifications showed up regarding pip and sudo as seen below:

 

The directory '/home/eddie/.cache/pip/ht

...

PA-5000 series - big hit?

Among our user base ( Indeni ), the majority of PANW devices deployed globally are the PA-5000 series, mostly PA-5060, PA-5050 and some PA-5220. Anyone knows why?

YoniLeit by L0 Member
  • 3053 Views
  • 4 replies
  • 0 Likes

Resolved! Best way to allow ALL traffic for troubleshooting

Hi people, 

 

I want to troubleshoot a connectvity issue.... typical problem where server guy says "it's a firewall issue". Can anyone suggest what's the best way to allow all traffic? I was thinking of traffic from my source (10.0.0.0/8) to destinatio

...

Jedi_D by L2 Linker
  • 3806 Views
  • 2 replies
  • 0 Likes

URL report top 100 with browsing time

Hi All,

 

i was trying to get as close as possible to bluecoat report that able to provide

1.URL visited

2.URL category

3.Browse time

4.User

 

So the closest i can get is URL report with counts, but not browse time,

 

secondly i can get Traffic logs with elaps

...

MineMeld install failing on Ubuntu Server 16.04.4

Having a devil of a time installing MM. I got to the 37th task in the install but got this error:


TASK [minemeld : create extensions frigidaire] **********************************************************************************************************

...

Abruner by L1 Bithead
  • 6617 Views
  • 6 replies
  • 0 Likes
  • 24217 Posts
  • 117 Subscriptions
Top Liked Authors
Labels