General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 1001 Views
  • 1 replies
  • 9 Likes

URL Continue and Affect on Applications

Does anyone have any information on the functionality of an application say facebook or netflix on a phone (Android/IOS) where the traffic also goes through a URL policy that has those websites in a "Continue" function?

 

Currently the Netflix applicat

...

Domain syslog match not functioning

Hi!

 

I'm having some trouble matching domain indicators on syslog feeds. So far I have a setup like this:

 

ransomwaretracker_RW_DOMBL (Miner) -> aggregatorDomain (Aggregator) -> feedDomainHCGreenWithValue (Output) -> Domain EDL within PAN-OS

 

The

...

PAN-200 CLI - limited commands

hi

i`m trying to troubleshoot some vpn tunneling connection drops
so i logged to the CLI execute some commands to troubleshoot the VPNs

 

test vpn ike-sa gateway
show vpn ike-sa gateway
test vpn ipsec-sa tunnel

 

none of this command exist even in configure

...

pan200.jpg
Gav-Yam by L0 Member
  • 1895 Views
  • 3 replies
  • 0 Likes

Captive portal + decryption + squid: https problem.

Hi,

I try to configure path for users to access the Internet. I use Palo Alto and squid. But not everything works as I expected.

The path:

user---Palo Alto ---squid ---Internet.

Squid is behind Palo Alto because of citrix users. I want to control citrix

...

okress by L1 Bithead
  • 1767 Views
  • 3 replies
  • 0 Likes

Resolved! Session Info on one Interface

I'm trying to find the session info on our outside interface; however I can't seem to find a command simular to show session info for looking at one interface. 

BPry by Cyber Elite
  • 1364 Views
  • 1 replies
  • 0 Likes

Resolved! Where is PAN-OS 7.0.0?

I have been running PAN firewalls for years and have been the person responsible for upgrading PAN-OS on them since PAN-OS 3.1.9.  Each time, going from one release to a version in a different major release involved downloading the base version of th

...

VPN Tunnel down - Troubleshoot

Hi Admins,

I need some help to troubleshoot our problem with the VPN Tunnels. We installed a Cisco to PaloAlto VPN tunnel. The PA in passive mode. But constantly the tunnels go down.

Here are some log outputs:

less mp-log ikemgr.log

2014-04-23 09:21:54

...

Hithead by L4 Transporter
  • 10043 Views
  • 24 replies
  • 0 Likes

Resolved! Exclude address on Zone Protection

So we use a Barracuda and when it sends out for an update to it's spam filtering it gets identified on the zone protection as a Host Sweep; is their a way that I can exclude it's IP address from getting identified? 

BPry by Cyber Elite
  • 2377 Views
  • 2 replies
  • 0 Likes

Resolved! PAN‐OS 7.1.4‐h2 or PAN‐OS 7.1.4

Hello everybody

 

After the security advisory PAN-SA-2016-0020).... I like to upgrade my actual version 7.1.3  to 7.1.4. But I like to know what are the meaning of -H2 and what is the differences between both versions.

 

Best Regards

 

Gonzalo

SOC_CSG by L4 Transporter
  • 1638 Views
  • 2 replies
  • 0 Likes

applipedia categories

Sorry if this doesn't belong in this location.

 

I see in the applipedia that the applictions have a description.  Does such a description or definition excist for the categories and more specifically the subcategories?  For example, what is the differ

...

mp34549w by L1 Bithead
  • 2647 Views
  • 4 replies
  • 0 Likes

Query regarding Dual ISP through 2 VPNs

Hello,

 

Trying to verify fail over using redundant tunnel at two different sites but it does not work properly.
Methods tried to test:
 
1:disabled the IPSec tunnel on one end, remote end which was monitoring the link failed over and chaned the routing t
...

Farzana by L4 Transporter
  • 1084 Views
  • 1 replies
  • 0 Likes

Any stable release of 7.1 yet?

We recently purchased AutoFocus and I know for the firewalls themselves, it needs 7.1.x for a lot of the integration.  Are there any recommened versions of 7.1 yet?  I know 7.1.4-h2 was recently released.    We mainly have PA-500s with a few 3020s an

...

Resolved! urlfiltering.paloaltonetworks.com - certficate revoked??

Is anyone else having a problem browsing to urlfiltering.paloaltonetworks.com?  We can't get to it from here.  We are being told that the certficate has been revoked.  (SEC_ERROR_REVOKED_CERTIFICATE)

 

I tried two different paths to the Internet from o

...

RSKadish by L2 Linker
  • 4016 Views
  • 5 replies
  • 0 Likes
Top Liked Authors