General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Filter for multiple subnets

My filter is not working, can you tell me why? ((addr.src notin '172.0.0.0/8') or ( addr.src notin 10.0.0.0/8 )) and ((addr.src notin '180.0.0.0/8') or ( addr.src notin 100.0.0.0/8 ) or ( addr.src notin 200.0.0.0/8 ))or for easier reading;(NOT or NOT) and (NOT or NOT) Basically,I want to see all traffic that does not source from my int...

Resolved! MineMeld for importing STIX XML files

Hey guys, I hope you are all doing great. Its my first touch to both STIX XML files and MindMeld, so I was hoping to get a shed of light with at least if it is possible? I am trying to find a way to import manually a STIX file (which I have attached) to the MindMeld so that it can feed my VM-100 FWs, is that possible and how can I accomplish...

Resolved! Cannot Ping Default Gateway

Hi Team, I am trying to set up a lab. I have configured PA and set up a client machine. But I have configured client machine and provided the IP address in the same subnet as one of PA's interface. Even after doing so, I am not able to ping default gateway which is set to one of PA's interface. Can somebody help ???????

SudhirK by L1 Bithead
  • 27400 Views
  • 6 replies
  • 0 Likes

SSL forward proxy CA cert

My enterprise has a CA root certificate pushed out to all clients. I am now planning to implement ssl decryption and want to import same cert and keys onto firewall for ssl forward proxy. what are the downsides of doing this? is it a good idea to use CA signed cert or the one I mentioned above? TIA

How to configure dynamic NAT IPs

I have a german ADSL connection and would like to make it accessible from outside. My server has internally the IP 10.0.109.111. From outside it is accessible via a DynDNS name because the public IP changes daily.My router has the 192.168.4.1 IP and the PA 200 on the eth3 has the IP 192.168.4.2. From within the Internet I can also access this IP...

2018-06-07 16_25_52-PA220-MZH-BW.jpg
2018-06-07 16_25_41-PA220-MZH-BW.jpg
2018-06-07 16_25_23-PA220-MZH-BW.jpg
2018-06-07 16_24_59-PA220-MZH-BW.jpg

Configure DUAL ISP

We have now two ISPs And we want to configure PA so that when first ISP is down the traffic (in and out) passed to the second ISPCan you give me please a guide about it?

Radmin_85 by L4 Transporter
  • 5783 Views
  • 10 replies
  • 0 Likes

Empty Scheduled custom CSV reports

I configured an 'Email Scheduler' for my custom reports which will be sent on a monthly basis. They will be sent correctly in .pdf format, but when I choose .csv in my 'Report Group' I receive empty .csv files. Is this a bug or a misconfigured configuration?

Resolved! Parsing of US CERT STIX files

Hi all, We have a wish for parsing the STIX file, which is provided in this alert from the US CERT: https://www.us-cert.gov/ncas/alerts/TA18-149A I have tried to research it myself, but I can't seem to find a way to do this in minemeld. Any ideas?

borising by L4 Transporter
  • 6186 Views
  • 2 replies
  • 0 Likes

Resolved! IP addresses disappearing from miner

Hello, I've created a miner to add IP address based on stdlib.listIPv4Generic and class minemeld.ft.local.YamlIPv4FT. Default configuration (just cloned). This week, some IP addresses just disappeared from this miner. We added an IP address to the miner last 21st, on the 22nd of this month the IP address disappeared from the miner. Older ind...

PA VM 6.1.0 Routing issues

Hello Experts,I am stuck with a Palo Alto test setup. I have a 6.1.0 VM version running on VMW. I have simulated the inside interface by a 10.10.0/24 subnet—- the two hosts are a **bleep** Small Linux with IP 10.10.10.190 (/24) which is connecting to the PA VM Ethernet1/1 L3 interface with IP 10.10.10.200 (/24). VMnet2 is used for managment inte...

Resolved! Firewall intercepts Virus between networks. False Positive???

Dear Palo Alto experts..., We have various systems in our LAN seperated by our Palo Alto firewall. In the last 24 hours the firewall detected 2.7K times the virus "Virus/Win32.WGeneric.rktkq" The systems are scanned for inventory by two programs. Spiceworks and PDQ inventory. The scan server is on one side of the firewall. The other servers are...

2018-05-31 10_39_51-FW-PA500-1.png
2018-05-31 10_35_11-FW-PA500-1.png
  • 24395 Posts
  • 123 Subscriptions
Top Solution Authors
Labels