This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4231 Views
  • 0 replies
  • 0 Likes

Resolved! ACC Network Activity logging

I'm wondering if the data that shows up in ACC is dependent upon session end (since that's when we're logging) to be reflected in the ACC data graphs. For example: If I have a host doing a large data transfer, will that information not show up in ACC until the session is finished or is the firewall tracking other things besides traffic monitor l...

epeeler by L2 Linker
  • 3415 Views
  • 2 replies
  • 0 Likes

PA 7.0, GP and RSA-ID double authentication

Hi, There is a deployment with RSA-ID as OTP and GP as VPN client (3.1 or 3.0). PAN-OS version 7.0.14.After the recent upgrade from 6.x to 7.x an issue showed up - when authenticating from GP - login information is asked twice.This seems like a known issue:https://community.rsa.com/docs/DOC-46969I've adjusted the PA settings according to this: h...

nikoo by L3 Networker
  • 3905 Views
  • 3 replies
  • 0 Likes

Best way to prevent brute force attacks (LDAP) on public facing Microsoft RDWeb login page

We are using Server 2012r2 RDS gateway and have the PA configured to with a security policy to allow the untrusted traffic (ssl, rds, http) that is NATed to the internal rds gateway. We are seeing a lot of failed audits in the logs on the terminal server. What is the best way to prevent brute force attacks for logins to Active Directory?

Resolved! SSL decryption & not working VPN

Hi guys, We wittnessed a very strange phenomenon this morning.First we received a call that our VPN gateway was not accepting any VPN connections.At the same time we received calls that certain websites were not accessible. These websites had in common that they were SSL encrypted. We have 2 PA-500 firewalls with a HA configuration.SSL decryptio...

How to ignore routes learned by OSPF

I would like to ignore some of the routes learned by OSFP so they don't install in the forwarding table. Important, I'm not talking about suppress/filter routes that my PA announce through OSPF. For explaining me better, I'm looking for "OSPF Inbound Filtering" in the language of Cisco:http://www.cisco.com/c/en/us/td/docs/ios/12_0s/feature/guide...

COM-UCO by L1 Bithead
  • 10188 Views
  • 7 replies
  • 0 Likes

Problem with nodes minemeld

Hello,I have problem after restarting minemeld it works for about 3 hours and them i can`t load nodes tab. I have loading indicator but nothig happens.Does anyone know what is going on?Best RegardsAdrian

minemeld.png
Shadosan by L0 Member
  • 3960 Views
  • 3 replies
  • 0 Likes

Resolved! Testing HA with unsupported PA-200 devices?

Hello folks, I am considering buying a couple of PA-200 devices from Ebay to some testing and self training.They do not come with support or licensing... Would I be able to configure HA (lite) on these devices?Does HA configuration require both devices to be at the same PAN OS level? Thanks,omatlock

OMatlock by L4 Transporter
  • 2640 Views
  • 3 replies
  • 0 Likes

Resolved! PA DHCP log search

Is there a way to do a specific search for and IP address or mac address in the DHCP logs? I can find and get into the logs but I have to manually look through all the logs to find what I need

jdprovine by L4 Transporter
  • 10506 Views
  • 7 replies
  • 0 Likes

Application vs Services

Hi All, I have probolem with dealing with security policy .. i need to allow telnet to specific ports range (2001 - 2005) but by defining them at services field it is working fine but i cant use ping or any other applications even my application foedl is (ANY) , so wondering what is difference between both of them and what i do if want to enable...

  • 24357 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks