General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 79 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3327 Views
  • 2 replies
  • 14 Likes

Sort ascending or descending in Custom Reports

I am trying to write a Report that shows the least number (e.g. 50) of used rules in my firewall.  The sort feature in the custom report builder only is sorting from largest to smallest.  I can't see how to reverse this.  Anyone know?

merrick by L1 Bithead
  • 1809 Views
  • 1 replies
  • 0 Likes

Can't access management when PA200 is in line

I have a PA200 and when I only have the management port plugged in, I can access the management interface. When I put it inline and have production traffic running through it, I'm no longer able to access the management interface. I have two NAT rule

...

kbreit by L1 Bithead
  • 2105 Views
  • 3 replies
  • 0 Likes

Active Directory group naming scheme

Hi all,

I'd be interested to here is anyone has come up with interesting naming schemes for AD groups used within Palo Alto firewall policies.

I'm looking for inspiration as I'm looking to come up with a logical scheme on our end.

 

Cheers.

Local admin account locked

I have a cluster of two Panorama systems.  When I try the local admin account on the primary-active node the system generates a log entry saying that 'failed authentication for user admin.  Reason: User is in locked users list.  The same account name

...

birish by L0 Member
  • 8358 Views
  • 1 replies
  • 0 Likes

BGP "no enforce neighbor-as" option?

Hi,

 

Is there a configuration avaialble to not enforce the requirement of a BGP peer including their AS in the advertised path?

 

This is required in peering exchanges where there are central route servers which function transperantly by advising of nex

...

CMG by L2 Linker
  • 1246 Views
  • 0 replies
  • 0 Likes

Resolved! test custom-url command with Panorama deployed rules.

I'm trying to test a few urls in a custom url category I have deployed on my FW, but am unable to get to work.  All my rules/objects are pushed out via Panorama and it seems as though the command only allows you to test locally defined rules (i get a

...

chrisp by L3 Networker
  • 3656 Views
  • 5 replies
  • 0 Likes

SSL Inbound Inspection


Hi,

I have setup a decryption policy to decrypt inbound SSL traffic for the Exchange web mail server. However, when I check the logs I see only some traffic as decrypted and some arnn't. Refer below screenshots,

Why isn't the policy not decrypting all

...

Shayan by L1 Bithead
  • 5030 Views
  • 6 replies
  • 0 Likes

GlobalProtect with X-Auth split tunnelling

Hi guys,

I'm working on a GP portal and gateway configuration, in order to provide to the customer full compatibility with the old vpn clients (ex: cisco) I enabled X-Auth support on it.

 

The client with a third party software authenticates but it alwa

...

HTTP2 and PAN?

Do PAN firewalls  support inspection of HTTP2 traffic in the same way as they do HTTP1.x?  I am curious because HTTP2 has three main improvements in this version, and I could see these the following two features potentially causing issues for HTTP1.x

...

mgentile by L2 Linker
  • 2118 Views
  • 0 replies
  • 1 Likes
  • 24124 Posts
  • 100 Subscriptions
Top Solution Authors
Labels