General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

is APAC an option of logging service region ?

Hi all

i would just like to know what region logging service is available for ?

is APAC included?

 

 

and Do we have a plan for PANORAMA service on cloud. so customers dont have to have panorama on premise,  instead, just pay by month for this service?

 

 

t

...

DannyDai by L1 Bithead
  • 1528 Views
  • 1 replies
  • 0 Likes

Resolved! PA SMB deny behaviour

Hi,

 

We have detected a atrange behaviour with SMB session.

 

We have created a rule for blocking wannacry (SMB) sessions 

 

We can see sessions being blocked:

 

 

So all sessions from trust to untrust should be blocked but we have done a tcpdump in our ISP

...

Captura2.JPG
Captura3.jpg

Apply QOS for a particual Service or Server

Dear Team,

 

we have a SFTP server behind our firewall and its nated to one of the interfaces of the firewal , we need to restrict the bandwidth to the  SFTP server . when clients connects to the server for downloading files they will be restricted to

...

Syam83 by L0 Member
  • 1605 Views
  • 1 replies
  • 0 Likes

PAN-DB Cloud Connectivity Issues

Has anyone else had the issue with the firewall blocking URLs when the cloud db is not working?

 

I have had two issues where the firewall will not allow sites that are common and catorgorized correctly in the local db because the cloud connection is n

...

aarronj by L0 Member
  • 1504 Views
  • 1 replies
  • 0 Likes

Show how long the VPN site-to-site tunnel is up

Hi everybody,

 

Is there any CLI command or log that show the time of the tunel VPN (phase 1, phase 2 or both of them) is up?

 

The commands:

show vpn ike-sa gateway <gateway name>

show vpn ipsec-sa tunnel <tunnel name>

 

It shows the lifetime since the last

...

How to Block all countries

I am trying to make a policy on my new PA-220 and i want to block all traffic coming in from every country except the united states..I can't figure out how to do that except by blocking every country one country at a time.. Can anyone tell me if ther

...

hill11 by L0 Member
  • 3288 Views
  • 4 replies
  • 0 Likes

Resolved! Spyware Infect Host report from P.A.

I just got a spyware infected host report that says something like

 

 

Destination address    |    Destination Host Name         |   Count

X.X.X.X                                hostname.domain.com              2.94k 

X.X.X.X                             

...

Globalprotect IPSec crypto

A couple of questions 

1. Is the IPSec crypto for global protect completely separate for the IPSec crypto option that you find lower down in the list on the firewall?

2. Is the Globalprotect IPSec crypto still used when x-auth is turned on?

jdprovine by L4 Transporter
  • 2363 Views
  • 2 replies
  • 0 Likes

how to write a simple miner documentation

Hi there,

   I'm a new user, so hopefully this is a simple question.

 

I installed minemeld via source code on ubuntu 14.04 using the instructions on this page : 

https://github.com/PaloAltoNetworks/minemeld-ansible

 

 The installation went smoothly

...

vb0398 by L2 Linker
  • 11825 Views
  • 18 replies
  • 0 Likes

Resolved! PBR forwarding does not work

For the first time I configured a Palo Alto firewall.

I have created three zones each connected with a specific interface:

INTERN

EXTERN

DMZ

 

For each zone I created a virtuel router each configured with static routes :

Intern:

DMZ -> Interface DMZ

Dmz:

EXTER

...

ZEBIT by L3 Networker
  • 4602 Views
  • 7 replies
  • 0 Likes

Pro active monitoring for routing table

Hello,

 

We have faced problem where routing table is full and we had an outage where customer were unable to access Internet for specific sites.

 

We asked for syslog or SNMP traps on it but we received as of now, there is no provision to monitor it

...

  • 24296 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels