General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

SSL decrpytion and TeamViewer

I was wondering if TeamViewer uses certificate pinning so I tried to decrypt it. I've set a simple decrypt rule to decrypt everything from one IP going to internet. But the rule doesn't seem to work for TeamViewer. All SSL sessions are decrypted but

...

How to Remove Configuration Lock

Hi,

How can we remove the configuration done on PAN by other admin, which has not been yet committed, but shows up on the configuration locks?

Best regards,

B.

No User ID in traffic logs (unless I filter soruce user afterwards) and User activity report blank

Has any one expereinced any issue to where the ACC shows source user-id but when ser report is ran its blank? Equallu I do not se user name in Traffic logs but when I filter by source user the name shows up. I tried restarting agent and everything

...

Dangers of creating a permiscuous IPSec VPN ( responder only) VPN

We have a business partner that wants to create an IPSec VPN tunnel with our PA-5050 using pre-shared keys, but they don't want to provide a Public IP address for us to peer with. Their other clients configure the remote peer address of 0.0.0.0 basi

...

What Firewall Change Management software is working with a PAN ?

Hi,

Is there anyone that can tell me which Firewall Change Management ( Skybox, Tufin, Algosec,.... ) is REALLY working with a PAN ?

Most of them claim they can do it, until you test it... nothing works...

Some of them announce PAN support for next year

...

Resolved! DAGPusher and DAG

Luigi,

Can you confirm DAGPusher name should match tag for DAG in PAN-OS? I can't have the DAG updated with Minemeld indicators

Thanks

Bertrand

Resolved! application incomplete no internet access

Hi Guys,

We are seeing the traffic for the new subnet we added recently are coming as incomplete and need some help to troubleshoot this.

Cheers,

Mykhaylo

incomplete traffic no internet access.jpg

palo alto vm

Can somebody help me with the network adapter settings for palo alto vm?

Resolved! Site-To-Site VPN to VMWare VShield Edge?

Greetings all.

We're in pre-deployment for our firewall and I'm attempting to get an Site-To-Site VPN tunnel set up to our VShield Edge setup in the cloud. I have a tunnel established but we can't seem to get anything across it.

Troubleshooting

...

Resolved! Per port session TTL

Hi,

Am I correct when I state that a PAN firewall cannot set different timeouts per used port?

Fortigates and Junipers seem to have this option, where they can set their defaults and specify -if required, for certain ports.

On a PAN device, I don't thi

...

Resolved! "LAN" Interface Failover configuration - Primary: dedicated Line, Secondary: VPN

Hi there,

maybe it's not that complicated but I didn't find a post for this scenario:

The LAN of our Clients are in Location1

(~ 200 km)

The LAN of our Servers are in Location2

Location1 and 2 are using the same firewall which is stored in Loca

...

Console interface of 7.0-h2

Is there a place to test out the 7.0-h2 console interface before upgrading, offered by PA?

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free