General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 249 Views
  • 0 replies
  • 1 Likes

Error with PDF Reports

when i do a test email for the email profile it successfully delivers the email. however in my system logs I get this error. 

 

"failed to email pdf reports to #####@#####.com for email profile #####"

 

any ideas?

alkajazz by L0 Member
  • 1566 Views
  • 1 replies
  • 0 Likes

Resolved! User based ssl decryption

Hi,

 

I try to test ssl forward proxy decryption. It works fine if I use IP address as a source but if I use Users(domain) as a source it doesn't work. I can't use IP's for testing because our IP's floating. What I need to check in configuration?

 

Toni

ToniE by L2 Linker
  • 6118 Views
  • 12 replies
  • 0 Likes

Resolved! GlobalProtect 3.0.2 setting VPN DNS on WiFi adapter

Hi,

 

I'm having a single client, running Windows 10 Pro, that we're having issues with.

When the user connects to their network at home, they are unable to connect to VPN, and it seems like the issues is caused by GlobalProtect setting the WiFi adapter

...

as-mg by L3 Networker
  • 8552 Views
  • 8 replies
  • 0 Likes

Resolved! QOS & Aggregate Interfaces

Hello,

In our QOS Aggregate Eth. Interfaces we cannot assign an egress value greater than 1000.

(LACP Bundle is 2 x 1Gbit on eth4 + eth5)

  1. Why ?
  2. Do we throttle down throughput to 1 GBit/sec. in the Aggregate ?
  3. Shall we leave egress value in profile and Int
...

rekuhn by L2 Linker
  • 2383 Views
  • 1 replies
  • 0 Likes

Slow download over decrypted TLS sessions?

I've noticed that downloads that occur over decrypted TLS sessions are incredibly slow since upgrading my PA-3050s to PAN-OS 6.1.x (now on version 6.1.12).  Sometimes they don't even complete at all, either failing or just sitting forever.  For examp

...

Resolved! RSH session issue passing through the Palo Alto

Hi Guys,

 

Interesting one. 

 

1x2.1x4.1x4.1x5 makes an initial connection using RSH the 192.168.0.20 then creates a separate RSH session back to the originating server but this always fails as the Palo seems to ignore the rule and NAT that is in place f

...

Brightcloud connection error

I have a PA-500 that is receiving the error of:

opaque: Failed to connect to Brightcloud update server service.brightcloud.com, initiated by 192.168.75.30

eventid: connection-failure


There seems to be no connectivity issues to URLs for the users. Just

...

jprice2 by Not applicable
  • 5622 Views
  • 12 replies
  • 0 Likes

Automate GlobalProtect VPN connection

Hi All,

 

 

 

We are trying to automate connections using the GlobalProtect VPN with a batch script. There's a way to accomplish it?

 

I've tried to use the PanGPA.exe in "C:\Program Files\Palo Alto Networks\GlobalProtect\" without success.

 

Any kind of hel

...

fruiz5 by L1 Bithead
  • 8171 Views
  • 9 replies
  • 0 Likes

Resolved! Block http traffic to numeric URLs

Hi,

 

I was ordered to block all http and hhtps traffic to addresses without a dns name. In other words user have to put in a network name in the browser and are not allowed to type an IP address in the address field.

 

As the thinking behind is bloc

...

PA identifying traffic from AKAMAI as BruteForce.

Hi guys,

 

Context: For the past 24 hours we've had constant reports of a Brute force attack on our servers originating from the Akamai CDN's.

 

I'm unsure whether this is simply a false positive, or if there something to actually worry about.

 

I've

...

MIGAS by L1 Bithead
  • 5846 Views
  • 8 replies
  • 0 Likes
  • 23627 Posts
  • 107 Subscriptions
Top Liked Authors
Labels