General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 636 Views
  • 0 replies
  • 0 Likes

New Global Protect 3.0 is not good enough

I was looking forwad to the 'new and improved' Global Protect. 

 

I am still very dissapointed at how it works from a UI standpoint. 

 

When I am connected to the VPN how do I disconnect? Is there a button hiding around in this awful GUI? The only wa

...

OrN8ikM.png
original.png
pmc by L2 Linker
  • 24859 Views
  • 41 replies
  • 14 Likes

Configuring a Zone Without Interfaces

It is possible to configure a zone without any interfaces specified? 
Will the rule containing this zone be applied ?

Will traffic that match this rule be accepted from any source and destination interface? 

shaunyt by L0 Member
  • 4193 Views
  • 4 replies
  • 0 Likes

Turn off logging when high load on data plane

I think I read something that said you can configure the PA to shut off logging if the dataplane was running a very high percentage of load and I would also like to be sent an alert if anyone has any information on this process.

jdprovine by L4 Transporter
  • 8218 Views
  • 6 replies
  • 0 Likes

Resolved! Reloading Config: Internal Server Error

So I just installed minemeld this morning so bare with me as I don't really have everything down yet. The issue that I currently ran into is that when I go under the Config tab I immediately receive an "Error Reloading Config: Internal Server Error"

...

BPry by Cyber Elite
  • 15532 Views
  • 11 replies
  • 0 Likes

Resolved! PANOS HA A/A; catch east/west traffic of multiple vlans

Hi community,

See attached visio.

And supplied notes.

 

There is no reason this won't work ?

 

The reason for this is to,

- Capture east/west 'inter-vlan' traffic that would normally be routed by L3 switch carrying SVIs, aka move the 'SVIs' up to the PAN. 

...

PAN deployment.png
mpgioia by L3 Networker
  • 2401 Views
  • 2 replies
  • 0 Likes

MineMeld in HA

Does MineMeld come with any kind of HA facilities? Do you see any issues or can share any gotchas for puting a couple of instances with the same config behind a load ballencer? 

GlobalProtect support for Mac OS Sierra

Does anyone have any experience of using the GlobalProtect agent on the latest Mac OS version 10.12? It's not listed in the supported clients but am hoping it will work nonetheless. This is the version in which Apple have dropped PPTP support, so we'

...

Mapping Public IP to Private IP (Internal Server)

Hello!

 

 

So, i've got an internal server say (10.0.10.1) that needs to point to a public ip (64.60.16.18). I've been following the documentation and have yet to get it working. I have followed this guide for how to "Translate Internal Client IP Addres

...

Resolved! Maximum file size that can be sent to WF-500

Hi,

 

My question is, if we have a WF-500 appliance and we want to adjust the maximum file size limit that can be sent to the appliance, e.g. PDF maximum size is 1MB but we want to change it to 10MB. Is that possible?

 

Regards,

Sharief

Resolved! Can't contact LDAP server/connect error

Hi,

 

No changes on Firewall or LDAP server side. All of a sudden noticed for some virtual systems, LDAP server connection failed.

The LDAP is configured correctly and we have the read permissions for everything in AD user. 
Errors in usridd.log:

 

2016-08

...

Farzana by L4 Transporter
  • 16620 Views
  • 4 replies
  • 0 Likes

How to prioritise users over Remote VPN (Global Protect)

I am wondering if you can advise me on a possible or best way to achieve the following. 

 

Current Situation

==============

 

We have remote VPN enabled on our Palo Alto firewall and we are using Global protect for that. Currently everything seems to be w

...

nvirmani by L1 Bithead
  • 2377 Views
  • 3 replies
  • 0 Likes

Resolved! Whitelisting o365

I want to make sure I understand the workflow on this correctly. To whitelist o365 I would perform the following:

 

1) Clone the o365 miners I want, prefixing them with wl

 

2) Edit the input for wlwhitelist and add the wlo365 miners I created.

 

Is

...

chirss by L3 Networker
  • 5614 Views
  • 5 replies
  • 0 Likes
  • 23945 Posts
  • 113 Subscriptions
Top Liked Authors
Labels