This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4393 Views
  • 0 replies
  • 0 Likes

Resolved! Scheduled SaaS Report

I feel I must be missing something obvious with the SaaS report. I have set a schedule up to create it weekly and if I hit "Run Now" I get the nice graphical report, but if I view the output of the scheduled run , I get a very plain tabular list of App Subcategory/App name/Bytes/Sessions/Threats. How do I get the nicely formatted report produce...

djr by L4 Transporter
  • 6895 Views
  • 9 replies
  • 0 Likes

URL filtering - proper format of URLs in the block list

Hello everyone,Blocking the URL below would be in the right format? Without the http:// or https:// www.spotify.com/sg-en/download/other It just got me confused a bit with the "TIP" displayed in the URL Filtering Profile screen, putting a slash at the end would match www.example.com/test; where the user only wants to block www.example.com.The ti...

Resolved! Converting Cisco ASA Access Lists to PAN

Is there an easy way to convert a Cisco ACL to PAN format. Right now I have a 70 line ACL and it looks like each ACL will require 14 set commands. At this point I'm thinking it might be easier to just enter the 70 ACLs into the PAN via the GUI. Any other thoughts on how to speed the operation? thanks! set rulebase security rules Beaglerun-L2L-VP...

palomed by L3 Networker
  • 6419 Views
  • 4 replies
  • 0 Likes

Resolved! non-syn-tcp global, zone protection profile but still Allow in the traffic logs.

Hi All Experts, Looking for advice here. Want to block non-syn-tcp packets. Global settings are: > show session info | match non-SYN TCP - reject non-SYN first packet: True Zone protection profile in place: But still Allow in the traffic logs. Is it normal? If yes, why? One more question. When configuring a zone protection pro...

12570_Zone TCP.PNG.png
nono-syn-tcp.PNG

Resolved! Pre-Install Pan Upgrade with no reboot

Does anyone download and install PANOS updates but wait to reboot until a scheduled maintenance window? I'm wondering how risky this would be and/or how long you can let a firewall sit waiting for a reboot to the installed new version. This would save time during our rather short maintenance windows if I could pre load the install during regula...

epeeler by L2 Linker
  • 7942 Views
  • 5 replies
  • 0 Likes

IPSec Conversion utility for Cisco ASA to PAN 6.1.1?

I have a couple of Cisco ASA tunnels I need to convert to Pan. Each has about 200 lines of config all told. Whether I mark things up in a word processor or enter it in PAN gui - it's going to be a slog. Pausing to ask the community: Might there be a conversion utility out there that could help me speed the plow??

palomed by L3 Networker
  • 3741 Views
  • 5 replies
  • 0 Likes

Hot shield proxy- PA unable to block

we have created the application filter for proxy based apps-140+ apps are in that proxy filter which includes IKE, IPSec, Hot-shield etc except SSL. This proxy-based app filter is called in the security policy (with block action). In addition to that, I have added the unknown-TCP, UDP and teredo, etc apps in same security policy. All the traffic...

botnet

Hi,If someone running a botnet inside local network ,is there a way to get an alert like siem, from reports ,from live stattistics ? what are the steps to identify these kind of traffic ?Finally how to block them when threshold reaches ?Thanks

simsim by L4 Transporter
  • 4322 Views
  • 8 replies
  • 0 Likes

DTLS Support

Is there support for DTLS in any version of GP and PanOS? I can't find any mention of it in the documentation.Thanks.

404 error on proofpoint miner

Any ideas on what to do about this error? 2017-04-21T02:25:37 (28250)basepoller._poll ERROR: Exception in polling loop for proofpoint-EmergingThreatsDomains: 404 Client Error: Not FoundTraceback (most recent call last): File "/opt/minemeld/engine/0.9.36.post2/local/lib/python2.7/site-packages/minemeld/ft/basepoller.py", line 701, in _poll perf...

chirss by L3 Networker
  • 3741 Views
  • 3 replies
  • 0 Likes

Integrating MineMeld with IBM QRadar

Hi, I am new to minemeld. I went through the documentation for integrating minemeld with qradar. Succesfully added the TAXII feeds in Qradar. I couldnt see any values getting populated in reference set defined in Qradar or updates shown in threat intellegence TAXII configuration section in qradar. Regards Thanzeer

Terminal Server Agent Installation on Windows Server 2016 (with secure Boot enabled)

Hi, Does anyone managed to install the terminal server agent version 8.0.0 on a windows server 2016 with secure boot enabled?Unfortunately I only get a message (after the installation) when the service is about to get startet that a digitally signed driver is required. Anyone else having this problem or maybe already a solution? Regards,Remo

Remo by L7 Applicator
  • 3293 Views
  • 2 replies
  • 2 Likes

Resolved! Configuring the Proxy-ID for phase 2 IPSec using PAN 6 CLI

there's this great example below for setting up an IPSec tunnel using the CLI. BUT it's missing how to add in the proxy IDs. I have some clues that it's like.. set network tunnel ipsec IPSEC-Tuna-TUNNEL proxy-id tuna1 protocol any Local xxxx Remote yyyy ..but I'm just guessing. Can anyone supply me with the real mojo - perhaps from a cleaned wor...

palomed by L3 Networker
  • 13312 Views
  • 3 replies
  • 0 Likes
  • 24371 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks