General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

threat ID 34904

Anyone else noticing false positives on threat id 34904 since Tuesday's update?

Thanks

Eric

Resolved! Features Introduced in PAN-OS 7. 0 !!!! ???

Can someone explain this to me?

On page 10 of the release note PAN-OS 7. 0

Then on the page 22 says it's not working on this release?!!

Resolved! IPSec VPN with Cisco ASA behind NAT

I'm trying to establish a ipsec VPN tunnel with a Cisco ASA with a peer address behind a NAT fw. We have checked all ike and ipsec crypto parameters, and successfully established vpn with Cisco ASA before.

Phase 1 is failing due to time out, and we g

...

question

session closes due to aging out but the traffic shows allow can someone explain to me what is happening

Resolved! dynamic block list

The setting for the dynamic blocklist gives you the selection of hourly, daily and weekly at _____. I understand the hourly, daily and weekly increment but at refers to what ?

PA5050 .configuration backup

Hi All,

Could you please provide doc for how to take configuration back up for PA5050.

I am planing to upgrade software version .6.0.3 to 6.0.10

How to report malware

Hi

I know that I shuld report by WilDFireportal - I did it many times but now I have a problem.

hxxp://www.kazevid.com/kSCdM3iIRbrKlZ contains malware reported as Trojan-SPY/Win32.emotet.qz or Trojan/Win32.vbkrypt.ynhg.

This email that contains such lin

...

How to be status are there 'grayware' on wildfire portal?

Hello,

How to be status are there 'grayware' on wildfire portal?

I have not seen it.

I expect grayware is between malware and benign.

But I would like to know it correct.

Thanks,

KC Lee

syslog forwarding

I have everything configured to send syslog information from the palo alto to one of our syslog server. My issue is that none of the security policy IP ranges allows me to send the syslog information for a specific IP address that is going out to th

...

Many users receiving Captive Portal

Dears,

We have been facing a lot of users identified by Captive Portal and not via UIA.

Does anyone could suggest any troubleshooting/best practices to avoid this kind of behavior ?

Thanks in advance!!

Captive Portal doesn't show up for some users

Dears,

Captive Portal doesn't show up automatically for some Consulting users (laptos out of our windows domain)

Does anyone face this problem before ?

Resolved! Vulnerability assessment question

We're having a vulnerability assessment done, and want to make sure that the IDS/IPS part doesn't disable all attempts from the vendors IP addresses, just the application blocking/service blocking.

Can I whitelist the 4 IP addresses and put them in a

...

Resolved! user Id issue with active- active HA

Hello Friends,

we have 2 firewall active-active HA mode. same LDAP configuration on both firewall. HA Active primary it working fine but secondary is not working. if primary goes down secondary work as a active, its also working fine. but it will not

...

Layer 3 switch behind Layer 3 PA-3020 interface

So I'm new to my PA-3020 and trying to get beyond my basic config has introduced a new problem for me.

I have a Layer 3 Cisco connected to my PA eth 1/2 via a routed interface on the switch. My traffic is all working fine now, but I want to make some

...

Poodle Bits Vulnerability

Looking for some guidance on this. I am seeing a lot of Poodle Bits vulnerability showing up on our threat monitor. Digging into the threat, the first item is always showing our current router (192.168.0.1) followed by two different attacker host fro

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Welcome to the General Topics Discussions!

Rules and Best Practices

threat ID 34904

Resolved! Features Introduced in PAN-OS 7. 0 !!!! ???

Resolved! IPSec VPN with Cisco ASA behind NAT

question

Resolved! dynamic block list

PA5050 .configuration backup

How to report malware

How to be status are there 'grayware' on wildfire portal?

syslog forwarding

Many users receiving Captive Portal

Captive Portal doesn't show up for some users

Resolved! Vulnerability assessment question

Resolved! user Id issue with active- active HA

Layer 3 switch behind Layer 3 PA-3020 interface

Poodle Bits Vulnerability

Paloalto NGFW - Policy-Based Forwarding (PBF) - Enforce Symmetric Return

Data center providing dual ports already in VRRP - my topology?

Downloaded Firmware from Active Firewall doesn't show up on Passive - PA-460

Disable email option completely for MFA

GlobalProtect Client updates software not working in GP Portal

Re: Data center providing dual ports already in VRRP - my topology?

Re: PAN-OS Release Frequency

Re: Alerts for dynamic updates

Bug Search Tool (New Feature & UI)

Retrieving Content 'IoT' info failed with error 'An error occurred while processing request. Please try again after some time or contact support.

Unlock your full community experience!

General Topics

Rules and Best Practices

Resolved! Features Introduced in PAN-OS 7. 0 !!!! ???

Resolved! IPSec VPN with Cisco ASA behind NAT

Resolved! dynamic block list

Resolved! Vulnerability assessment question

Resolved! user Id issue with active- active HA