General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 336 Views
  • 0 replies
  • 2 Likes

Any big issues with preferred release 10.2.10-h9?

Hello. We're preparing to upgrade ~20 firewalls (mix of 800-series and some VM series) to 10.2.10-h9 to address CVE-2024-0012. Wondering if anyone is running 10.2.10-h9 now and how things are working? Any issues with Global Protect? We're heavy users

...

cmonte29 by L1 Bithead
  • 367 Views
  • 1 replies
  • 0 Likes

User-ID and Microsoft Entra ID Internal

We recently setup our CIE to work with our Microsoft Entra ID so when on GlobalProtect, we can track users and their traffic.

 

We are now looking for solutions for a similar setup for internal users (not on GlobalProtect but on network). We are tryi

...

Resolved! Template vs Device Group

Hello All - I am fundamentally not understanding the difference between Template and Device Group.  Using teamplate i can push a policy to multiple Firewalls.  Looks Device Group also does the same thing. 

 

What is the difference, and use case. When t

...

Prisma Cloud Certification

Is there anything available to get free discount vouchers or any link to register to get updates on upcoming offers on certification of Prisma cloud (for partners and customers).

prevent-brute-force-attacks

Hello Everyone

 

I am looking for suggestions on how we could protect our GlobalProtect VPN. We have been seeing people trying to perform brute-force attacks on random user accounts daily. We do have MFA set up, but is there any automation we could i

...

dshastri by L0 Member
  • 155 Views
  • 1 replies
  • 0 Likes

Secondary FW not sending alerts

Hello,

 

I have a pa 450 HA set up.

 

I configured alerts to send an email anytime an administrator logs in or a change is committed. But these are only sending from the primary firewall; if I log into the secondary FW no alerts are sent.

 

Is there

...

Log Container Page Only - impact?

Hello,

 

Has anyone experienced a negative impact from having the "Log Container Page Only" feature checked/turned on?

 

I ask because of the warning, "If you enable the Log container page only option, there may not always be a correlated URL log ent

...

xmlapi: query not available

Hi everyone,

 

I'm trying to get the Prisma Remote Network details via an API call.

From the  Panorama webgui debug page, I'm able to do this... like you see here:

 

 

that red line  has all  the information I want with via an API call,

so I tried:

wget --no...

DieterV2_1-1607433437133.png
DieterV2 by L1 Bithead
  • 3091 Views
  • 3 replies
  • 0 Likes

Need assistance with PA-445: general setup/VR

Hello Everyone, I need a little assistance

 

I am new to Palo Altos...I have just received and trying to set up an PA-445...but I ran into the following issues:

- no incoming traffic hitting on anything (outbound traffic is OK: computers plugged into

...

cannot commit as one service keeps shutting down

first here is the specs:
Firewall : Pa1410
version : 11.2.4-h1
 
 
here is all the details of the issue :
 
1- device > syslog -> syslog profile -> custom log format -> and changed the default format of GlobalProtect 
to location=$location, portal=$p
...

Can not block x-vpn on port 80

Please can we have some assistance with blocking x-vpn. We currently have

 

Decryption enabled

DNS proxy enabled

The threats are set to reset/drop/block in screenshots 

 

Despite all of this, the HTTP-2 connection method in x-vpn successfully establi

...

How to find active high bandwidth user

If a Palo Alto firewall is experiencing high throughput, what's the best way to find the source user/IP while the high throughput is occurring?

We have all of our security policies set to log on session end, so that traffic log wouldn't help since the

...

jambulo by L4 Transporter
  • 6695 Views
  • 3 replies
  • 0 Likes
  • 23670 Posts
  • 108 Subscriptions
Top Liked Authors
Labels