This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4125 Views
  • 0 replies
  • 0 Likes

Resolved! Separating Inbound and Outbound indicators

I created a miner based on Unit42 tag search. I was trying to see how many inbound and outbound indicators it has, so I added two processors (Prototype: stdlib.aggregatorIPv4Inbound & stdlib.aggregatorIPv4Outbound) and connected to output nodes. Somehow I see the same number (227) of indicators for both. Is this expected or a bug? Please a...

How to determine DoS Alert, Activate and Max thresholds (Packets/second) from PaloAlto firewall.

Hi, We have implemented the PaloAlto firewall through which traffic is passing without any issues. Now we want to enable DoS protection and we assume that the current traffic passing through firewall is legetimate. I need your help to understand and obtain the below values.How to get packets per second value for the traffic entering the particul...

Gururaj by L4 Transporter
  • 3126 Views
  • 1 replies
  • 0 Likes

Get newly added Device in sync with Panorama

I have been manging a PA-500 individually for a few months due to it being on Code 5.x and it not being able to be managed by my Panorama 8.x server. So I have finally brought this PA-500 up to code 8.x, runs like an old three legged dog now, but now I need to start managing with with Panorama. So how do I make sure I do not override the current...

Disabling BYOD VPN when not conncected.

For security of my personal device, I'd like to verify how to fully disable the BYOD VPN software when I'm not connecting. Also, I'd like to verify how can I be sure I'm running the BYOD version and not some version that has spyware capability?

Resolved! Panorama traffic invisible

PAN(VM) and PA1 management interfaces are both Zone A. PA1 connects to PA2(remote site) on IPSEC tunnel. Traffic from PA2 on PA1 is considered in Zone A and viceversa on PA2 for traffic from PA1. If i do packet capture on either PA, I can see there is bidirectional traffic between PA2 and PAN. But traffic logs don't show anything, I may select ...

raji_toor by L4 Transporter
  • 5306 Views
  • 6 replies
  • 0 Likes

How to block unknown machines from traversing the network

Hi all. My question is how can I create a rule that blocks traffic from a computer I brought from home as opposed to from my work domain? I want to be able to see people that bring their own devices onto the network and then block access to the network as a whole. Is this do-able without Captive Portal? Any help would be appreciated 🙂

Roshawn by L2 Linker
  • 8138 Views
  • 10 replies
  • 0 Likes

Resolved! Syslog miner indicator

Hi, i'm trying creating a indicator for SLW injections events , extract src_ip and insert into Down below the code attached to the syslogminer class stdlib.syslogMiner , unfortunaltely validate process reports errors with the only suggestions "Condition is invalid", could be either a formatting erro or a logical erro, hard to say. conditi...

Is it possible to monitor PBF rule status via SNMP?

Hi- Is there a way I can get our PA-220 to alert our SNMP monitoring system when a Policy Based Forwarding rule fails/activates? I've set up SNMP on the firewall, added a device entry in our PRTG monitoring system, and set PRTG to automatically detect the device. It has discovered about 40 sensors, but I can't see any that relates to PBF. We hav...

IPSEC Tunnel messages and failure

On Weelkend, one of our tunnels was down for about an hour. I was checking system logs and found these messages repeatedly for that tunnel, even after it is up. Anybody knows what this means and what to look for in logs to find the cause of tunnel failure. 'the packet retransmitted in a short time from x.x.x.x[500]''IKE phase-2 negotiation reque...

raji_toor by L4 Transporter
  • 10211 Views
  • 7 replies
  • 0 Likes

Resolved! Does the PA-200 support the latest code of 8.0.2 ?

Hello, need to know if the PA-200 supports the latest version of 8.0.2 i am on the fense on getting one but am concered it may not be handle the latest code , also if not which PAN is the next best thing recommended for home/small business that can handle the latest code .. thanks in advance

How to save the API Key and make proper use of the REST API calls

Not sure if this makes sense -- plan to use Palo Alto's REST APIs for automated script tasks and health checks. Is there a way to save the key into a variable string -- therefore you can make multiple API calls and reference to the output key? Want to automate some of the daily health checks (HA status, available free space logs, critical event ...

c.huang by L1 Bithead
  • 2551 Views
  • 2 replies
  • 0 Likes

Resolved! Wie starten mit PA220 und 8.0

Hallo, ich suche ein Start Tutorial in welchem einfach erklärt wird, wie man mit der PA220 startet. Also dieser Beginner Guide hab ich schon, IP vergeben etc. Aber nun welche Regeln sind Empfehlungen, wie blockiert man diverse URLs? Wie baut man einen VPN-Tunnel zwischen zwei PA220 auf, eine Fallback Leitung einrichten. Und noch vieles mehr. Ich...

  • 24336 Posts
  • 124 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks