General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Home configuration PA-200 help

Hi guys,

Im new to this and im trying to install a pa-200 at home. I have managed to install it in a layer 2 configuration but i would like to install it now in a layer 3 configuration.

I have followed this article https://live.paloaltonetworks.com

...

Resolved! Send ICMP Unreachable panos7

Hello

What really is the purpose of using that checkbox in policy action with drop or reset ? What are benefits ? Thanks

Regards

Resolved! SSL Intercept

Hi all, before I head of and start configuring is it possible to test SSL Decrpyition in Vwire mode? I ahve a test server spun up in my lab and wanted to confirm

Threat prevention & Wild fire dynamic update issues

Any one having any issue with DNS with regard to a recent threat prevention and wildfire dynamic update?

Unused rules

Is it possible for a rule to show unused and be passing traffic? I disabled an unused rule and it seemed to affect traffic. I usually check it and it now show in the traffice monitor and it highlighted as unused. I also rebooted the firewall about a

...

Resolved! Using IPSEC tunnel as redundant link to a destination

Hello PAN Live Community,

I'm looking at having a redundant link to a given set of destination (servers) over an IPSEC tunnel when primary WAN link goes down.

What is the best way to do this ?

PBF ?

Resolved! Sinkhole Clarification

I have VWIRE setup rule is trust to untust (wide open rule to any) I added sinkhole profile to the rule. I also added a deny rule above for my sinkhole ip (53.53.53.53). I have my windows box pointing to .2.2.2 when I do nslookup on suspcisous s

...

Upgrade to 7.1.0

I upgraded our lab palo to 7.1.0 last night. Has anyone else upgraded anything in their enviornment yet? I don't plan on doing anything in our production enviornment until at least 7.1.1 or 7.1.2.

Not really having much time yet I don't have much

...

Resolved! Deployment software with 7.1: Cannot see firewall listed

Hi All,

After upgrade to 7.1, I cannot see firewall under:

I have this problem only with pan500, with 200 works properly.

Is that a bug or license issue?

Any kind of suggestion?

Best Regards

Luca

Resolved! group mapping issue

Hi all,

when try to Retrieve group include list getting below error :- Internal error. Please suggest.

Regards

Satish

Web Browsing and Associated Traffic Logs

I've never really ran into this issue before and was hoping to get some tips on how you all correlate this type of information.

So we have FQDN host blocks for certain Internet based resources. More and more I'm seeing collateral impacts to uninte

...

PAN-OS 7.1 SaaS Report - Export to PDF PA-500

How can we share the new SaaS Report introduced in PAN OS 7.1 on a PA-500? There is no option to export to a PDF.

Generating the report creates a weblink, but viewing the report requires a login.

Is printing the HTML page as a flat PDF the only way

...

Resolved! Global protect question

I've seen multiple videos on global protect and need clarification. My first question is do you need to configure a static route on virtual router? Second quezon is to you need to configure NAT? Tutorial I've seen sometimes so these configurations so...

Clarification of rule processing order?

I had two firewall rules in the following order:

Any Internal > Any External > Any Application > Service TCP 80/443
Any Internal > Any External > Application filter "web browsing" > Service "App Default"

With a "decrypt" profile on web based email

...

Resolved! Device not using the default route for Software downloads

Hi,

Our PA firewall Device not using the default route for Software downloads or conytent uploads eventhough no service routes configured . Any help would be greatly appreciated

Reagards

Lijo

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free