General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

VM PA to VM PC Unable to ping.

Hi,

I've created a VM LAB. But, I facing some issue.

VM Details: VMnet3: 10.128.1.0 (HOST)

PA Details: int 1/1 10.128.1.254/24 mac: aaaaaaa1(sampleonly)

PC: IP: 10.128.1.2

DGW: 10.128.1.254

I already enable ping on Profile(PA). Disabled Firewall on PC

...

Cascading PBF policies for traffic fail over between two sites both using PAN firewalls?

My goal is to sent traffic to/from two sites with three levels of redundancy. Both sites have redundant PA-3020s. First, traffic goes through a L2 point-to-point circuit. If this fails and is disabled, an IPSec tunnel takes over. Lastly, a third

...

Issue with connecting to GlobalProtect

Hello,

I've been using GlobalProtect before to connect to my univeristy's network when I'm outside campus. However, recetnly, I've not been able to conenct to the network. I get a message reading "Resend credential".

I'm hoping someone could help me

...

difference between revert ti running configuration vs load named config snapshot

Resolved! Detailed view miners

Hi,

Do we can have a table view on the minors were you can see easily confidence level, state experimental or stable, ... ?

Regards,

Kevin

NTP sync failing after PAN-OS 7.0 upgrade

I upgraded Panorama to 7.0 and then 7.0.1 recently and it seems to have broken my ntp synchronization in Panorama. Now I get "NTP sync to server x.x.x.x failed, authentication type none". If I run a "show ntp":

NTP state:

NTP not synched, using loc

...

Resolved! global protect error - Error(6986): Protocol error.

Error(6986): Protocol error. Check server certificate. Failed to ssl connect to 'globalprotect.xyz.com:443', Disconect ssl and returns false.

firewall Policies list

I am on OS 7.0.10 and would like to get a nice easy to read list of the rules on my firewall, other than the html exported list does anyone know of a good method?

Resolved! Syslog analyzer - how to configure logstash to send to remote, not local hosts ?

I have syslog analyzer created from prototype stdlib.localSyslog. Now I want it to send matching results to logstash but on remote not local server where MM is running. Default is I think below (host is 127.0.0.1), where do I change host address ?

i...

Resolved! PA HA concept quick question

Hi Guys,

Just to clarify that heartbeat ping messages send by bi-direction (Active>Passive and Passive>Active) and these messages proceed by management plane. So if my MP CPU utilisation is always high (98% it is 2050) is it possible to lose ICMP (h

...

Policies / application question

Just trying to understand PAN and policies better.

If we want to allow all web-browsing, what can we do?

As soon as the application is identified, we will need a policy for this specific application (for example Google base). Otherwise we will hit an

...

Report Setting are:

Database: Traffic Log

Time Frame: May1-31

Sortby: Top 500

Group by: 25 Groups

Selected Columns: Dest

...

Resolved! ssl sever certificat can't be verified

Hello I encountered a strange situation

I tried numerous time to connect a global protect agent in version 2.1.x on windows 8 and with a mac too

and I obtain a message can't verified the server certificat

I tried to connect with the FQDN specified in th

...

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free