General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Panorama configuration report

Hello,I would like to get a report containing settings of all firewalls in the Panorama console, without going device by device.Is it possible?First report is to get interface IPs and subnet (contained in the Interfaces, Ethernet menu of Panorama) Or not possible, I need to go for scripting?

Minemeld exports feed to another Minemeld via TAXII

Hi Guys, I am a newbie in Minemeld. I have deployed two Minemeld in two VM. Recenlty I am studying how to export the output feed via TAXII to my second Minemeld. May I know is there any way to do that or do we have any miner can poll the feed ? For the output feed prototype I have used stdlib.taxiiDataFeed. Please help if anyone know how to do ...

Jutice by L0 Member
  • 5718 Views
  • 2 replies
  • 0 Likes

Financial Service No-Decreption

Dears We set rule in Decrytion for no decrypt for Financial services category .Although there is website when users go to it the PaloAlto do "Decryption"The site is "URL":www.nbe.com.eg How we get PaloAlto do "No-Decrypt"for the traffic goes to this site

VM-Series Virtual Firewall Passwords

I just spun up a new VM Series Firewall in AWS via the marketplace, can connect to the unit fine but the admin/admin username password combination that I find to be the default on PA documents does not allow me access. Any idea what the default username password might be?

maumand by L0 Member
  • 5790 Views
  • 1 replies
  • 0 Likes

Resolved! PA Packet capture

Is there anyway to get bi-directional data in a single packet capture on the PA ? Some of mine seem like it splits the traffic into tranmissions on one, drop on another and recieve on yet another. Can those all be combined?

jdprovine by L4 Transporter
  • 8692 Views
  • 6 replies
  • 0 Likes

Resolved! Wiping out any changes in candidate config

From Device Management, if I "Revert to last saved config" does this simply revert back to the previously committed or saved config? ie it just wipes out any unsaved changes to the candidate config?Is there any impact in doing this?I simply want to wipe out the current candidate config.Cheers,Shannon

Vulnerability Scanning

My requestors wants to perform Vulnerability scanning on the Palo Alto firewall devices and they want to whitelist the Qualys devices residing on ON-Prem. So my question is do i need to create security rule or make modifications to vunerability or allow those scanners on the management interface?They provided me the scanner IP's that they wan to...

kpotru by L1 Bithead
  • 4018 Views
  • 1 replies
  • 0 Likes

Resolved! Customize User-ID Display

Is it possible to change how usernames are displayed in the Monitor tab? Our samAccountNames are rather cryptic and it would be nice to be able to view them by the displayName field instead.

Resolved! Cannot export FW device config from Panorama

Hello, We are trying to push the device config bundle to the first firewall in the HA pair, which I’ve successfully imported the configuration for. However, getting error message below when trying to 'Push to Commit' or 'Export' from Panorama.Note the configuration itself it very small – there are no security policies and less than 20 objects. ...

Error.jpg
Farzana by L4 Transporter
  • 3426 Views
  • 2 replies
  • 0 Likes

Resolved! Urgent - Port Block Help

Hi All, we are trying to implement a security profile to block port 445. Universal, source any/any, dest any/any, application unchecked, service port 445.The profile is near the top of the list of profiles (above the outbound traffic profile).For reasons unknown we are still seeing entries in the traffic log when we filter on:-( port.dst eq 445 ...

sorrell by L1 Bithead
  • 6964 Views
  • 5 replies
  • 0 Likes

email change

Hi,How can I change my email address which is associated with live.paloaltonetworks.comThanks

sib2017 by L4 Transporter
  • 3991 Views
  • 2 replies
  • 0 Likes

Having GlobalProtect Users Access Webserver NAT Address Instead of Internal Address

I'm very very new to Palo Alto. For the few weeks that I've been using it, I've been very impressed with its ease of use, and functionality. I have a question when it comes to GlobalProtect. We have a webserver that we want to exclude from the GlobalProtect VPN tunnel. Let's say the site is test.testcompany.com. In the Client settings, in G...

Resolved! Ports Used by Palo Alto to Integrate Cisco ISE for Radius Authentication

Just posting today to request confirmation on which ports are required to allow Radius communication for authentication (only), between Panorama and Cisco ISE. Panorama ------------------- FWs--------------------Cisco ISE Which ports to open up on FW sitting in the middle?, I'm reading UDP 1812 though there's a part of me which suspects there c...

nawaza by L2 Linker
  • 4926 Views
  • 1 replies
  • 0 Likes
  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels