General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 443 Views
  • 0 replies
  • 2 Likes

Resolved! How to check drops on PA-500 due to performance limits

Hello!

 

Is there way to check session/packet drops on PA-500 due to performance limitaions?

 

Scenaro:

There is PA-500 appliance, that provide internet access to +2000 users with agentless integration with AD.

 

Management CPU average load is about 70-100

...

SSL Decrypt Problem with Chrome

Hello all,

 

 

We are having some problems with SSL Decrypt with Chrome. When we try to connect to some pages appears certificate error that I attached.

 

I have PanOS 7.1.8 and only occurred this with Chrome. Know somebody how I can fix this problem ?

 

Ki

...

error.png
SOC_CSG by L4 Transporter
  • 4486 Views
  • 5 replies
  • 0 Likes

Resolved! Expected behaviour for Null, FIN and XMAS scans

Running through a few very basics tests to prove Zone Protection etc with a customer, what is the expected default behaviour for reconaissance scans such as Null, FIN and XMAS scans?

 

Currently I can get the following nmap commands to run without issu

...

Resolved! GP Server Certificate Verification Failed

Hey guys,

 

I wanted to upgrade the Global Protect Version.

 

Currently, I have version 2.3.4 in use an everything works fine.

 

Now I have a new mac with 10.12 and therefore I need version 3.1.1 of GP.

 

So I activated it on the firewall, installed it on th

...

MPI-AE by L4 Transporter
  • 18600 Views
  • 14 replies
  • 0 Likes

Resolved! Commit error

I'm getting an error when committing on an instance I had spun down for a year and then upgraded yesterday when spinning back up. Looking in logs it looks like it's having problems resolving one of the miners but I'm not positive.

 

Any thoughts on h

...

chirss by L3 Networker
  • 3905 Views
  • 4 replies
  • 0 Likes

PA Default Behaviour for un-matched UDP traffic?

Hello,

 

I am pretty new to PA firewalls, and started looking at the default firewall behaviour for various kinds of traffic.

Hence wanted to know, what happens when PA sees unmatched UDP traffic, say a DNS reply, from outside for which it doesn't have

...

Fatema by L2 Linker
  • 6453 Views
  • 12 replies
  • 0 Likes

Resolved! Offline Filtering Options

Is there an offline agent/option that will filter URL traffic when an end point is not routing through the Palo Alto? We have several company provided laptops that we want to secure when users take them home.

tmerta by L0 Member
  • 2541 Views
  • 2 replies
  • 0 Likes

Configuring User-Id With Radius

Hello Dear Community,

 

I have a client who wants view user-id users name of the radius server on Palo Alto Logs (Like happens with LDAP Active Directory)

 

The SO of the Radius Server is Windows Server 2008. I saw there is a link on Palo Alto KBs to con

...

AitorGD by L1 Bithead
  • 21703 Views
  • 8 replies
  • 0 Likes

Resolved! Best way to manage Dropbox

I am looking for a good way to manage the use of dropbox. Ideally I would like to deny all and allow particular people to access.  Any help on this would be great.

GLO-ISO by L0 Member
  • 8775 Views
  • 7 replies
  • 0 Likes

Running Minemeld on CentOS

Is there any plans to package this up to be installed on CentOS? I am using it curently in AWS for dev but would like to bring it in-house for production and currently our Linux team only supports Rhel/CentOS.

AlexZu by L1 Bithead
  • 9940 Views
  • 12 replies
  • 1 Likes

Post process Minemeld URL list

Hello - 

 

I am loving the product so far, but ran into an issue recently.  The miners are pulling the URL's correctly from Microsoft, but some of the URL's are not formatted correctly for use.  A few examples:

 

*-my.sharepoint.com

*word-view.office

...

Zach by L0 Member
  • 5711 Views
  • 3 replies
  • 0 Likes

DHCP Server on Palo Alto

The DHCP server on Palo Alto does not clear the Expired sessions, its stays and we have to manually go and clear the sessions.

 

Can you please help.

Denis by L2 Linker
  • 4484 Views
  • 10 replies
  • 0 Likes
  • 23702 Posts
  • 110 Subscriptions
Top Solution Authors
Labels