General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Configuring User-Id With Radius

Hello Dear Community, I have a client who wants view user-id users name of the radius server on Palo Alto Logs (Like happens with LDAP Active Directory) The SO of the Radius Server is Windows Server 2008. I saw there is a link on Palo Alto KBs to configure the user-id for Radius users from the Syslog Server: https://www.paloaltonetworks.com/docu...

AitorGD by L1 Bithead
  • 33136 Views
  • 8 replies
  • 0 Likes

Resolved! Best way to manage Dropbox

I am looking for a good way to manage the use of dropbox. Ideally I would like to deny all and allow particular people to access. Any help on this would be great.

GLO-ISO by L0 Member
  • 10930 Views
  • 7 replies
  • 0 Likes

Running Minemeld on CentOS

Is there any plans to package this up to be installed on CentOS? I am using it curently in AWS for dev but would like to bring it in-house for production and currently our Linux team only supports Rhel/CentOS.

AlexZu by L1 Bithead
  • 12805 Views
  • 12 replies
  • 1 Likes

Post process Minemeld URL list

Hello - I am loving the product so far, but ran into an issue recently. The miners are pulling the URL's correctly from Microsoft, but some of the URL's are not formatted correctly for use. A few examples: *-my.sharepoint.com *word-view.officeapps.live.com autodiscover-*.outlook.com http://sr.symcd.com There is also the issue of the way...

Zach by L0 Member
  • 7391 Views
  • 3 replies
  • 0 Likes

DHCP Server on Palo Alto

The DHCP server on Palo Alto does not clear the Expired sessions, its stays and we have to manually go and clear the sessions. Can you please help.

Denis by L2 Linker
  • 6014 Views
  • 10 replies
  • 0 Likes

Commit process hangs at 99%.

I have job stuck in queue . Tried clearing job,restart mgmt getting same error. Server error : Timed out while getting config lock. Please try again.

Site to Site VPN Tunnel is up, but no traffic pass through

Hi all. I am trying to setup a site to site VPN tunnel with one of our customer. I've got the dedicated layer 3 zone, tunnel interface, IKE Gateway, Virtual Router etc. configured per the Palo Alto admin guide. In the "IPSec Tunnels" section, it shows the VPN tunnel is up. However, I cannot access any of the server located at the customer's ...

User-ID client device specific

Hi All, I'm trying to figure out a work around to a user-id issue I'm having. We're currently running Novell Open Enterprise Server as our back end identity store. I have the User-ID agent installed on a windows box and communicating via ldap to my novell servers. It will ID people correctly sometimes. If someone puts their laptop into stand...

ICarder by L1 Bithead
  • 4423 Views
  • 4 replies
  • 0 Likes

Trouble with IPSec-SA

The partner company requires that I translate all packets to them so they appear to come from one public IP address. In monitoring on the PAN I can see that the packet passes and the source address is translated. The problem is that the tunnel is not coming up. I've been using the article at the bottom to try and figure things out. If I run >...

palomed by L3 Networker
  • 4839 Views
  • 2 replies
  • 0 Likes

Resolved! Migration path from PA-2020 to PA-820

What is the correct way to migrate from a PA 2020 at PANOS currently at 6.1.16 (plan on upgrading to 7.0.14; the highest version show up in the avaliable releases) to a PA 820 at PANOS 8.0?

itoffice by L0 Member
  • 7306 Views
  • 8 replies
  • 0 Likes

Resolved! How VPN test commands work

What happens behind the scenes when you run.. test vpn ike-sa gateway <name> or test vpn ipsec-sa tunnel <name> Is there a debug which will show you the test packets sent/received?

palomed by L3 Networker
  • 7460 Views
  • 2 replies
  • 0 Likes

Vpn site to site encryption

Hi All, i have two different firewalls and need to establish site to site vpn IKE Phase 1 : Encryptin will be AES-256 CBC and the other peer have only AES-256 without CBC is it gonna work ? or it will fail

Panorama Cert Expiring

I've been finding it more difficult to take time away from daily work tasks to review the happenings on the community. That said I just reviewed the release notes for 7.1.9 and saw the impending cert expiration. While the "sticky" thread is a good idea, it might be a good way for Palo to reach the appropriate masses if you guys send a "notifica...

User-id with RDP users

hi, am having an issue with user-id for users login to servers over RDP, what happens is when user1 login to serverA over RDP and then user2 login to serverA user2 will get the policy of user1. on PAN when i run the command ( show user-id-mapping ip serverA ) it shows user1 login .when i installed the TS-agent on serverA it solved my issue but t...

  • 24395 Posts
  • 123 Subscriptions
Top Solution Authors
Labels