General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 89 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3331 Views
  • 2 replies
  • 14 Likes

Resolved! Problems users with Windows 10 and User ID agent

Hello,

 

I need your help with the following scene:
I have some machines with Windows 10 Operative System and I have detected a problem with the PA Firewall. The Firewall is not detecting the user (UIA), so the policy rules are denying the access.

Panos

...

SOC_CSG by L4 Transporter
  • 6728 Views
  • 10 replies
  • 1 Likes

QoS theory / functionality

Hi,

 

We have an interface which is 100Mbps. There will never be more than 20 IP addresses connecting on this interface.

 

I wish to guarantee each connection 5Mbps and allow them to use the entire 100Mbps if the additional bandwidth is available.

 

I can

...

SARowe_NZ by L3 Networker
  • 2125 Views
  • 4 replies
  • 0 Likes

Resolved! Package minemeld not found

Refer to the KB below and install it.
However, even if you implement 5. Installing MineMeld,
The following error will be output.

 

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454

 

Sinc

...

package-error.png

connect-change

Hi,


I was getting "connect-change " and ha2-keep-alive error (severity critical) in pa

pa is in active -active mode . This happened almost same time in two different days . ha2-keep-alive error happened right after a commit.

When I checked there is no c

...

sib2017 by L4 Transporter
  • 1556 Views
  • 0 replies
  • 0 Likes

DNS traffic identified as sophos-live-protection

Some DNS traffic is classified as sophos-live-protection in our traffic logs. Has anyone else seen this? I only have logs 5 days back in time, so I cannot say when this started but it wasn't with the latest apps update. Our firewall is PA-5050 runnin

...

Globalprotect client

I want to do some testing on new global protect clients but I don't want to make it update anyone tell I can test it, How do I get the software to test with out making it the default cleint on the firewall?

jdprovine by L4 Transporter
  • 5263 Views
  • 25 replies
  • 0 Likes

Security policy: exception question

Hi, I'm trying to create a security policy that would block all critical traffic from source zone "A", to destination zone "B". However, I want to allow traffic from a specific IP in zone "A". How can I make an exception to allow that IP? I assume I

...

Resolved! message security over http

How does PA handle message security over http ?

Whereas https secures the communication, message security secures the content.

 

I would expect PA does not touch http content. But we are having issues with an application that connects to a partners serv

...

dieter_b by L4 Transporter
  • 6670 Views
  • 16 replies
  • 0 Likes

Resolved! Replace ASA5505 with PA200 Teleworker

I have a remote user that's setup with an ASA5505 configured for teleworker. They move around and don't always have a static IP address at their locations. It's configured to call home to my ASA5540s and create the tunnel.

My question is if the PA200

...

JeffDBO by L1 Bithead
  • 2505 Views
  • 4 replies
  • 0 Likes

Resolved! AutoFocus Miner Thought

Getting the minemeld engine up running the AutoFocus/TAXII redesign today, one thing I noticed while trying to create better and more targeted AutoFocus miners is that I cant create a list that maintains a specific “age”

 

Where many lists will allow

...

hallerr by L2 Linker
  • 4083 Views
  • 3 replies
  • 0 Likes

Resolved! POP3, SMTP and IMAP setup

Hello,

 

Our POP3, SMTP and IMAP is currently set to Default (Alert) in the AV profile.

 

We have noticed malicious emails coming through and identified via Wildfire for staff using personal email addresses/computers using POP3 protocols? These personal

...

Antivirus.png
Farzana by L4 Transporter
  • 7865 Views
  • 4 replies
  • 0 Likes

Custom App-ID vs "Unknown-UDP"

If I create a custom app-id for an application we use, will it no longer match the "unknown-udp" (which we block)? Or do I need to do an application override as well?

Global Protect on MAC - How to Clear Cookie?

I'm running Global Protect on my Macbook.  I have the gateway configured to accept cookie and set to 24 hours.

For troubleshooting purposes I'm trying to figure out how to clear my cookie on my Macbook so it does not automatically connect.

craigkp by L0 Member
  • 4096 Views
  • 1 replies
  • 0 Likes

SKYPE

Why would a rule with app-id of skype show up in logs as ms-lync when Lync is not part of rule

  • 24125 Posts
  • 100 Subscriptions
Top Solution Authors
Labels