General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 299 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 976 Views
  • 0 replies
  • 0 Likes

Syslog-ng issue

I have a Kiwi Syslog-ng server reachable from Palo Alto Firewall MGMT interfaces. I generated a Self-signed Cert on PA Firewall and imported that into Windows' store for use in Secure TCP (SSL) communication in kiwi Syslog Server....but the firewall

...

Activate logging

Hi,
I can't view in my Kiwi Syslog the traffic from my outside interface.
In my PA-500 I've enabled SNMP in Device -> Management ->Management Interface Settings -> Permitted SNMP Service.
In Operations -> SNMP Setup -> activeted Use Event-Specific Trap

...

s_quasar by L3 Networker
  • 3046 Views
  • 7 replies
  • 0 Likes

Resolved! Question about Virtual Router and Policy Based Routing

Hi All,

 

We are currently doing the migration from ASA 5550 to PA5020. We have totals of 4 interface in our environment.

 

In ASA the routing is handle by Static route and pretty straight forward.

 

As for Palo Alto, should I combine all the static route

...

PaloAltoRouting.PNG

Microsoft glitch

 

anyone aware of  Minemeld downloading a blank FQDN file then passing it to Palo Alto?

 

for ofcie365, for whatever reason Minemeld is unaware that Microsoft has a glitch and the FQDN file is blank.

 

Would either Minemeld or the Palo Alto’s have a

...

PA-VM Cannot ping eth1/2 internal interface

Hi Guys,

 

I am running a PA VM with a VM-100 license on vmware workstation 12.5. 

 

I have the mgmt interface bridged to my network and can access the PA GUI, CLI and the internet. 

 

For my internal interface i have setup eth 1/2 to vmnet3 and unchecked

...

vmnetcfg_2017-10-22_09-54-29.png

File blocking in windows shares

Hi Guys,

Please need your support in blocking files when clients tries to copy files from local system to a shared folder on a server.

I want to just allow text files and block all other files from being copied from local to remote server.

 

Thanks

mahmoodm by L3 Networker
  • 2486 Views
  • 1 replies
  • 0 Likes

Resolved! Decrypt inbound inspection and panorama

Hi

 

I can't seem to configure inbound decryption because I need to select a cert, but there is nothing in the drop down list !

 

is it just me ?

 

Certs are kept in templates not device groups so seems a bit strange .

 

Alex

Palo Alto Forward Proxy?

We presently leverage a fwd-proxy solution that a selection of hosts (2000-3000) on various networks pass through in order for us to funnel them to a few IP's and enforce a more STRICT URL policy at the perimeter. The hosts are managed through GPO.

 

M

...

Web Advertisement URL Filtering

I have enabled URL filtering to block web advertisements, but it looks really bad cosmetically on the users end when they get to a web site where the advertisement should be there is big texted block page. Anyway we can eliminate the block page for w

...

Using file blocking and wildfire profiles together

Hi Guys,

 

Please can someone explain me why we would use the file blocking profile as well as the wildfire profile on the same security rule.

What i understand is that once the file is blocked then no need to send it for the wildfire analysis..Please c

...

mahmoodm by L3 Networker
  • 7906 Views
  • 15 replies
  • 0 Likes

Resolved! Ports required to register and activate Panorama

Hi folks

Just sanity check required here, make sure i'm not missing something.

with regards to:

  

updates.paloaltonetworks.com

 

Can I please ask community to confirm only Port 443 is required, as I currently have FW blocking Panorama registrastion proces

...

nawaza by L2 Linker
  • 2594 Views
  • 2 replies
  • 0 Likes

Enable Multicast IGMP proxy

Hi all,

 

I've a PA-3020 and i'm trying to configure multicast between 4 zones.

All zones are directly connected to the PA.

ZoneA -> There are all my HDMI - WIFI adapter (Airtame)

ZoneB -> Users B

ZoneC -> Users C

ZoneD -> Guests

 

When an user is in ZoneB, o

...

  • 24037 Posts
  • 115 Subscriptions
Top Liked Authors
Labels