Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 28 Views
  • 0 replies
  • 0 Likes

Resolved! Outbound SSL Decryption Capabilities

I know outbound SSL decryption can work when a client inside the network is accessing a secure website on the internet.  But can SSL decryption work when a client on the internal network attempts to make a vpn connection to a vpn server using an SSL

...

RustyPA by L1 Bithead
  • 2725 Views
  • 2 replies
  • 0 Likes

Authenticated threat feed - Miner node

Hi all,

 

A customer of mine subscribes to a threat feed where they need to authenticate (using web form) to recieve the inputs. Maybe I have missed this, but I couldn't see any predified miners to achieve this?

 

Thanks,

Tim

tkirk by L1 Bithead
  • 4469 Views
  • 1 replies
  • 0 Likes

Application Dependencies

Hi all,


First time post.

 

If you add all the required dependent applications to security policy (e.g. for Skype: msn-base, ssl & web-browsing), does this then allow all of those apps out dependent of if the primary Skype app is being used for that poli

...

njuttner by L1 Bithead
  • 2928 Views
  • 5 replies
  • 0 Likes

PANGP virtual ethernet adapter missing on windows 7

Hello,

 

PANGP virtual Ethernet adapter is missing from Windows 7.
I have tried uninstalling and reinstalling GlobalProtect.
I have also tried following this article:
https://live.paloaltonetworks.com/t5/Management-Articles/Error-Failed-to-find-PANGP-virt

...

fmustafa by L1 Bithead
  • 22883 Views
  • 2 replies
  • 0 Likes

Agentless User-ID Question

So I've been under the impression that our PA-3020s contact the ADDC servers to authenticate users every 20 minutes when it's setup to do a probe; then caches this information locally so that it isn't constantly hammering the servers with WMI request

...

Capture.PNG
BPry by Cyber Elite
  • 1705 Views
  • 2 replies
  • 0 Likes

IPSEC interoperability - PAN-VM-200 to CISCO ASA 5505

Good Day

 

First - Do you need a IPSEC license for a PAN-VM?

 

Second - Can I follow the PAN guide for - "IPSEC interoperaability between Palo Alto Firewalls and CISCO ASA"? The reason I ask is the guide show conifguration between a PAN-5060 and a AS

...

burtond by L2 Linker
  • 5892 Views
  • 11 replies
  • 0 Likes

Software versions

Why are for example the software version 7.1.3 (29.6.2016) ready for download and update before 7.0.9 (1.8.2016)? When I look at the Software-option under Device when I am about to update my PA-3020, I get confused when I see for example version 7.1.

...

NilsRune by L0 Member
  • 2800 Views
  • 3 replies
  • 0 Likes

ISP Load balancing with ECMP

I have the Following Scenario on a PA-200

 

[ISP1]

Zone = Untrust

Eth1/1 = 192.168.7.110/24

Modem GW = 192.168.7.1/24

 

[ISP2]

Zone= Untrust

Eth1/2 = 192.168.5.110/24

Modem GW = 192.168.5.1/24

 

[Local LAN]

Zone=Trust

Eth1/3 = 10.1.1.1/24

Running DNS-Proxy and DHCP

...

m7usman by L1 Bithead
  • 5124 Views
  • 6 replies
  • 0 Likes

How to filter rule by subnet

 

Hi there,

 

I'm trying to filter the rules via subnet.  Is this possible ?  I've tried copying (addr in '10.10.10.0/24') from a working log filter search and that doesn't seem to work.  There's no filter builder like the log search box so i can just u

...

Mugwali by L2 Linker
  • 2104 Views
  • 2 replies
  • 0 Likes
  • 23584 Posts
  • 107 Subscriptions
Labels