This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 478 Views
  • 0 replies
  • 2 Likes

Panorama location best practice

I have deployed Panorama in our LAN and plan to manage a global install. Now I realized that remote firewalls cannot reach it until they have their VPN setup (which I prefer to do using Panorama too).

 

What is the best practice to solve this? Should P

...

Download fails at 35mins mark

I am trying to download an ISO from microsoft site. It is around 5.2gb file and it has failed few times now around 4.7gb/35mins mark. Logs shows access allowed. using PA200 7.0.9.

Resolved! Policy lockdown question

Hi all, maybe obvious question but it there was to lock down a firewall policy to just a particular. Example only John Doe can make changes to Rule#1 and 2

Resolved! Github Pan-configurator tool

Trying to install and use Pan-migrator what does below mean and how does one resolve it


C:\Users\frankcl\Downloads\dev\dev\pan-configurator>git pull origin master
fatal: unable to access 'https://github.com/cpainchaud/pan-configurator.git/': Could n...

GP certificate differences in 2.3 and 3.1

Hi,

 

We have an internal CA, we have a certificate generated and it is used for GP portal/gateway only, clients are authenticating via usual credentials. Nothing fancy overall. So there are external clients who do not have CA cert installed, so they a

...

nikoo by L3 Networker
  • 1664 Views
  • 1 replies
  • 0 Likes

Resolved! CLI command to disable power supply

Hi

 

Does anyone know of a command to disable one of the power supplies on a PA5000 series firewall (for the 7.0 software train) please? I need to disable one of the power supplies on a remote firewall and dont have the option of pulling the cable manu

...

Resolved! MineMeld syslog indicator rules

Hi all,

 

I've successfully connected my firewall to the syslog miner and can see logs arriving. I believe I now need to create a rule to match logs to extract the indicators.

 

Here's my recieve stats from the miner:

Here's the rule I'm trying to c

...

miner-stats.jpg
rule.jpg
tkirk by L1 Bithead
  • 10101 Views
  • 6 replies
  • 0 Likes

Removing interfaces off a VM-series HA pair

As per title, functionally, this is easy to do.

1. Shut VM down.

2. Remove interfaces from virt solution configuration for the VM

3. Power up. 

4. All is well.

 

But, in a PAN VM-series HA pair... I'm worried that I might have to shut both down AT THE SAME

...

mpgioia by L3 Networker
  • 1709 Views
  • 1 replies
  • 0 Likes

Import from xml of a 2 vsys system

I have an xml config export from a PoC system that had 2 vsys configured. Is there a way to peel out one of the vsys configurations from the xml and import vsys1 only?

RFalconer by L3 Networker
  • 1977 Views
  • 1 replies
  • 0 Likes

url-filtering


Hi,

In url filtering adult-and-pornography blocked . But la-xxx.com can accesible
xxx.com not blocked

 

1)
test url la-xxx.com

la-xxx.com adult-and-pornography (Dynamic db)

2)
test url xxx.com

xxx.com adult-and-pornography (Base db)


other info
----------

show ur

...

sib2017 by L4 Transporter
  • 4195 Views
  • 8 replies
  • 0 Likes

Two L3 interfaces on One Zone

 

 

 Hi,

 

 

in the setup of the above diagram , I need to run OSPF on Paloalto between two Core-SWs, so I have to create two L3 interfaces  Point to Point with the two SWs.

 

the two core-SW is considered as inside for me , so from the prespective of routi

...

Question.jpg

Resolved! Create threat signature

Hi Guys,

 

I need to know if I can create a threat signature in case I've only the malware hash.

 

Is it possible to do on PA?

 

If not, Is there any other way I can block malwares based on hashes only?

 

Regards,

Sharief

  • 23708 Posts
  • 110 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks