General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 709 Views
  • 0 replies
  • 0 Likes

Captive Portal with Radius and groups of users

Hello

I'd like to consult with You one problem. My users authenticate with Radius on Captive Portal web page.

Problem that comes to me is how to assign access according to groups of users. My FreeRadius has only one group of users, I can add more but h

...

_slv_ by L4 Transporter
  • 7538 Views
  • 6 replies
  • 1 Likes

GlobalProtect with multiple sites

Hello all,

 

 

At my location we have 3 internet connections each at a different building. We have private and leased fiber inbetween so our entire organization is one internal network. At the internet connection points I have been replacing the Cisco A

...

why do we update wf-content-version on WF-500 appliance

Dear Experts,

 

I was wondering that why do we update wf-content-version on WF-500 appliance, what is the reason for it. As I have configured WF-500 to generate the signature locally, what additional value will be added by downloading why do we update

...

fozail by L3 Networker
  • 4024 Views
  • 6 replies
  • 0 Likes

Resolved! Output does not work

I have created a miner with prototype ransomwaretracker.RW_IPBL., and processor and outputs.

 

Miner shows 11497 indicators but processor and outpus shows 0 indicators.

 

It cloned the model with default.

 

I have attached a pdf with setup.

 

I would appreci

...

Screenshot_1.png
Screenshot_2.png
Screenshot_3.png
Screenshot_4.png

Palo Alto firewall as Default Gateway at Branch location

Hi all,

 

I am working on redesigning my branch location network and there is a requirement where we will need to move the Default Gateway to the Palo Alto firewall at the branch which the Palo Alto will be handle inter-vlan routing at the branch. Curr

...

datran by L0 Member
  • 2340 Views
  • 2 replies
  • 0 Likes

HA fail-over if Root partition is Full

Hi Team

 

Should HA fail-over occur if the root partition is full on Active firewall, causing the outage ?

 

Case 00590455

PA-5050

-----------
Root partition was 100% full and firewall was not allowing new Global Protect connections. PA Engineer helped him

...

tkhan by L2 Linker
  • 2851 Views
  • 2 replies
  • 0 Likes

Resolved! PAN-OS 7.1 change to query interpretation

I have a report which has been working fine for ages then it has just stopped, possibly when we upgraded from 6.1.14 to 7.1.6

The report has just stopped returning any data, so I looked into the query string and found that one element of the query see

...

djr by L4 Transporter
  • 4171 Views
  • 8 replies
  • 0 Likes

Is it safe to enable IP Spoof Protection on Untrust Zone

Dear Experts,

 

I was wondering that shall I enable IP Spoof Protection on Untrust Zone, as it identify the source IP address as per routing table. Any request coming from Internet will have some public IP address (Normally) and PA will not have those

...

fozail by L3 Networker
  • 5262 Views
  • 2 replies
  • 0 Likes

Google Play Store Problem

Hey guys,

I have a strange problem:

I have a security rule that allows google-base and google-play.

However, in the logs the google-base app is denied with the imlicit-deny rule at the end.

The firewall doesn't find my allow rule?

What is wrong?

MPI-AE by L4 Transporter
  • 2480 Views
  • 3 replies
  • 0 Likes

Make exception in vulnerability

For our website we host a database in our DMZ network. When we recieve a lot of calls from the website to the database the connection get a reset because the firewall see this as an attack (40031). Is there a way to configurate that the firewall allo

...

ZEBIT by L3 Networker
  • 2970 Views
  • 5 replies
  • 0 Likes

palo alto and panorama integration

Hi All

 

i would like to seek and advice from you all regarding the palo alto firewall and panorama integration

we have deployed 2 pair palo alto firewalls 1 pair in DC A and 1 pair in DC B.

 

now we want to deploy the panorama so for the common rule we c

...

IndramE by L0 Member
  • 3714 Views
  • 6 replies
  • 0 Likes
  • 23972 Posts
  • 114 Subscriptions
Top Liked Authors
Labels