General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

Resolved! App-id and Migration Tool with Panorama

Hey all, I use Panaorama to manage our firewalls. At the time of our deployement we simply just migrated the existing ASA configuration to the PAN Firewalls to get them up and running as fast as possible. We would now like to migrate our service ports to App-id. I found out how to do this during Ignite 2017 using the MIgration Tool but it was ne...

Report not showing URL by name, just IP

Hello, We are new to using reporting on the PA 3020. When we run reports, specifically a user report, we would like to see the URL by name of the location on the Internet our user was visiting. However, as shown in the included photo, some URL's are decoded and some still show IP only. Is there a config or something we've missed? Is there a meth...

Resolved! Long Term User Activity Logging/Reporting Options

We have 2 3050 appliances (not in HA) managed by a Panorama VM. For now all are running version 7.0.x but we are upgrading to 7.1.x in coming months. We may have a requirement to retain user activity logs (mostly URL activity) for a minimum of 6 months to a year for around 1100 users. Looking for recommendations if we should increase our Panoram...

How to configure MineMeld to forward Logs to RSA Security Analytics

I want to forward the output of output nodes in minemeld to SIEM, I want to see the output indicators in Security Analytics to create rules and when an indicator match generate an alert, actually I have configured PaloAlto Firrewalls with Dynamic List but I would like to send output indicators to SIEM

Available Feeds

I'm looking to understand what are the available address feeds which can be consumed from Minemeld. Is there somewhere I can look this up, without installing it?

Resolved! What is panGeneralGeneralTrap?

Hello Now we setup snmp server and recieved snmp traps.We recieved "panGeneralGeneralTrap". What meaning it? Thanks.

Resolved! Site 2 Site VPN

I have an issue where we have ike traffic comeing from the end point which is being allowed but the ipsec-esp is being caught by the deny all rule. The strange thing is that the the rule to allow ike and ipsec-esp is on the same rule. We do carry out NAT on the public IP for some ports , is this this the issues Can any one please point me in th...

Resolved! Real world experience Panorama 8.0.x with firewall devices running 7.0.x / 7.1.x

Hello, does anybody have real world experience with Panorama running 8.0.x with firewall devices running 7.0.x / 7.1.x. Currently Panorama is running 7.1.x. Due to new commit features and improved log performance we would like to update Panorama to 8.0.x We make extensive use of device groups and templates.

"Change Monitor" Reporting

Hi community PAN has this really nice feature called "Change Monitor" in the WebUI under monitor tab>App Scope. Unfortunately this feature is only available in the WebUI and not in Custom Reports or by API. Has may be someone found a custom solution on how to get the outputs from the "Change Monitor" into periodic/daily automated reports or m...

Time out Oracle sessions

Hi, We have problems with time-outs in Oracle connections. We are seeing how the BBDD sends keep alives and in the FW is increased the number of packets when passing the keep-alive packet, but following one of these connections, in one of them we did not see increase the number of packets in the firewall, And the time to live of the session is n...

Resolved! Number of hours per user in a certain category

We need the amount of monthly hours in the social media category per month of a user generating this in .csv ... can anyone help me?

Help understanding the alienvault otx process

I have an alienvault otx miner set up. I would like to subscribe to a lot of the pulses published there, however it's as though the feed isn't presenting or something along those lines. I've had it running for a decent amount of time and the amount of indicators is fairly small. Other than subscribing in the otx web interface is there anything...

Default log forwarding and profile group

HI, I've migrated a firewall with 1000 rules, and i need to set one profile of log forwarding and one security profile group. Is possible set this profile for all rules at once, and not one per one. Marco Poffal Daza

VM Series on Alibaba Aliyun Cloud

Hi All, Does anyone have experience deploy Palo Alto Networks VM Series on Alibaba Aliyun Cloud? Is it possible? Thanks. Regards,David

Resolved! panorama and clustered PA's

Hi So if your managing a clustered set of PA's with panorama. Do you have "synchronise config set" or unset and let panorama write configs to both ? Is there any thing wrong with having it set and having both units managed by panorama ?

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! App-id and Migration Tool with Panorama

Report not showing URL by name, just IP

Resolved! Long Term User Activity Logging/Reporting Options

How to configure MineMeld to forward Logs to RSA Security Analytics