General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

Global Protect Very Slow

I am checking to see if anyone in the community can help before I try tech support. I have noticed recently the clients using Global Protect are have VERY slow performance. My tests at home show that I am getting 100mbps download without the Clobal Connect connected and 1.5 mbps with it connected. I have tested multiple devices from multiple l...

Question to Wildfire appliance

Hey all, I have some questions to the wildfire appliance: https://www.paloaltonetworks.com/documentation/60/wildfire/wf_admin/wf-500-file-analysis/about-the-wf-500-wildfire-appliance We don't use the public wildfire because we are not allowed to send secret files into the cloud because of strict data security policies. So I thought to use the on...

GlobalProtect SSO and 3rd Party Credential Providers, What did you do?

Hello, We recently installed Palo Alto firewalls (3000 series) and are currently working on our VPN configurations.We have multiple 3rd party credential providers including drive encryption and Windows single sign on. One of the selling points was the ability to have SSO VPN and full tunneling of the traffic on our laptops while off site. We ha...

Resolved! Policy Based Forwarding vs Security Rules

Hello, I am not quite sure about the difference between rules created under 'Policy based forwarding' and 'Security' under Policies tab. Could someone please help understand how are the rules different that are created under security and Policy based forwarding? Thanks,PS

Important information regarding Content Apps & Threats version 709 -dataplane restart

I just move to 7.1.9 about a week ago and there seem to be warning of issues with dataplane restart and I thought it was related to the threat version 709 and I am now on 710. I have seen no issues so do I still need to upgrade to 7.1.10

Resolved! OID for CPU/MEMORY on PAN 5050

I'm looking for an OID to use for monitoring the CPU/MEMORY utilization with my NMS system. My MIB walk didn't turn up anything useful. Thanks,

Resolved! SCP Export Query from Panorama

I'm having a bit of trouble with the format for exporting traffic logs from Panorama for a particular user. I've setup the CLI command as below but the resulting csv file is empty. scp export log traffic query "user.src equals <username>" ...scp export log traffic query "username equals <username>" ... I've also tried "equal" instead...

Resolved! Panorama Device groups and pre and post policies

Hi Okay just to under stand if I have a device group TopMiddlepa and I place my device in pa group and i have rules security in the pre sectiontop -> Rule 1middle -> rule 2pa -> rule 3 how does that look on the actual PA. if I look at my device security will the policies be rule 1rule 2rule 3 or rule 3rule 2rule 1 and i presume its &...

Resolved! App-id and Migration Tool with Panorama

Hey all, I use Panaorama to manage our firewalls. At the time of our deployement we simply just migrated the existing ASA configuration to the PAN Firewalls to get them up and running as fast as possible. We would now like to migrate our service ports to App-id. I found out how to do this during Ignite 2017 using the MIgration Tool but it was ne...

Report not showing URL by name, just IP

Hello, We are new to using reporting on the PA 3020. When we run reports, specifically a user report, we would like to see the URL by name of the location on the Internet our user was visiting. However, as shown in the included photo, some URL's are decoded and some still show IP only. Is there a config or something we've missed? Is there a meth...

Resolved! Long Term User Activity Logging/Reporting Options

We have 2 3050 appliances (not in HA) managed by a Panorama VM. For now all are running version 7.0.x but we are upgrading to 7.1.x in coming months. We may have a requirement to retain user activity logs (mostly URL activity) for a minimum of 6 months to a year for around 1100 users. Looking for recommendations if we should increase our Panoram...

How to configure MineMeld to forward Logs to RSA Security Analytics

I want to forward the output of output nodes in minemeld to SIEM, I want to see the output indicators in Security Analytics to create rules and when an indicator match generate an alert, actually I have configured PaloAlto Firrewalls with Dynamic List but I would like to send output indicators to SIEM

Available Feeds

I'm looking to understand what are the available address feeds which can be consumed from Minemeld. Is there somewhere I can look this up, without installing it?

Resolved! What is panGeneralGeneralTrap?

Hello Now we setup snmp server and recieved snmp traps.We recieved "panGeneralGeneralTrap". What meaning it? Thanks.

Resolved! Site 2 Site VPN

I have an issue where we have ike traffic comeing from the end point which is being allowed but the ipsec-esp is being caught by the deny all rule. The strange thing is that the the rule to allow ike and ipsec-esp is on the same rule. We do carry out NAT on the public IP for some ports , is this this the issues Can any one please point me in th...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Global Protect Very Slow

Question to Wildfire appliance

GlobalProtect SSO and 3rd Party Credential Providers, What did you do?

Resolved! Policy Based Forwarding vs Security Rules