General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Join Us for a Tech Deep Dive Miniseries!

 

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.

 

Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real

...

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 441 Views
  • 3 replies
  • 1 Likes

What's new in MineMeld 0.9.16

Release Date: 2016-06-07

How to update: Updating MineMeld

 

Prototypes:

2 new prototypes from the MineMeld community (thanks !):

- Emerging Threats Open rulesets prototype, contributed by Víctor Barahona

- blocklist from badips.com, contributed by ne

...

Screen Shot 2016-06-28 at 15.31.18.png
Screen Shot 2016-06-28 at 15.31.29.png
lmori by L7 Applicator
  • 2136 Views
  • 0 replies
  • 2 Likes

Resolved! Application: Incomplete

Hi,

 

Does anyone have a suggestion on how to create a rule to catch Application incomplete? Now that traffic hits the first policy that allows traffic on that service (port). And it clogs the logs when looking at that rule and what has passes through

...

mgusta by L2 Linker
  • 5529 Views
  • 7 replies
  • 0 Likes

Global Protect Portal Feature Request

Am I posting this in the right place?

 

 

I would like the ability to display available VPN gateways for my users based on AD group membership.

 

E.G. I have 4 available gateways:

 

gw1 - no AD group requirements

gw2 - no AD group requirements

gw3 - no AD gro

...

Disble GlobalProtect Agent on internal - corporte lan

Hi,

 

is it possible to disable the globalprotect agent autoconnect on the corporate lan ?

 

scenario:

-outside the corporate lan the vpn connection must be autoconnecting to the globalprotect portal to enforce webfiltering etc..

- inside the corporate lan

...

edv by L0 Member
  • 446 Views
  • 2 replies
  • 0 Likes

How to identify long live session(s) ?

Hello,

 

I am trying to identify those long live sessions on my firewall,  I mean those session(s) that never ended for weeks at a time.

 

This is what I found out so far.

 

1.  I can't export the whole session log to perform offline analysis,

2,  I did not

...

"Facebook-apps" And "Facebook Chat" block

 

Hi all,

 

Appreciate if you can guide me to block facebook-apps and facebook-chat in Palo Alto but allow other facebook features. I already implemented it in Application layer but failed, is there something i am missed? I am using PA-3020 and 7.0.3 ve

...

Service route destination option

What is the purpose of adding destination in service route?

We have a default gateway in management interface config and we also have specific route in vr so why we need it?

hrsingh by L0 Member
  • 1074 Views
  • 5 replies
  • 0 Likes

NAT after Proxy

Hi

 

I have to set up a PA-200 as a NAT.  That it self would not be the problem but between the PA-200 and the modem is a Proxy. I have no information about that proxy. The only information i have about the network is the IP settings given by DHCP. Is

...

Tiesto by L0 Member
  • 781 Views
  • 1 replies
  • 0 Likes

XAuth RSA stopped working.

Hey,

 

So recently my XAuth RSA connection to my Global Protect via my Android phone stopped working.

 

I've already read the fourm post about Version 7.1.1 but I have not updated to that version yet and am still on 7.0.6.

 

I haven't made any changes (at

...

Zewwy by L2 Linker
  • 484 Views
  • 0 replies
  • 0 Likes

Resolved! How to block www.youtube.com completely

 

Dear All,

 

Appreciate if you can advise how to block www.youtube.com completely. I have try using URL-Filtering and application layer level but still failed. I am using PA-3020 OS version 7.0.3

 

 

Imran

Resolved! arp not found

Yesterday I attempted to move our Internet connection from a copper interface on ethernet1/1 to fiber optic on ethernet 1/13 on a Palo Alto 3020. 

 

I ensured both interfaces were members of the  same security zone and modified the Default route of def

...

Resolved! Reduced bandwidth after 7.1.2 upgrade

After the upgrade to 7.1.2, I've notice that my bandwidth has reduced by 80% over a Metro E Gig connect. Any one else seen this problem or has a resolution for it?

 

ITICID by L1 Bithead
  • 1981 Views
  • 5 replies
  • 0 Likes

Resolved! RADIUS authentication: MS-CHAP v2?

Currently, my PA-3050 devices (PAN-OS 6.1.12) utilize RADIUS authentication.  I know that this uses the completely unencrypted PAP protocol.

 

I have asked PAN about MS-CHAP v2 support in the past and was told that the device must be placed into FIPS m

...

Top Liked Authors