General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 327 Views
  • 0 replies
  • 0 Likes

Resolved! Upgrade question Current version 6.0.10

Hi

 

Am currently a PA n00b, looking at upgrading an active/active stand-alone pair of 3020s currently running 6.0.10, looking to upgrade to 7.0.

 

Question: do we upgrade to 6.1 and then 7.0 or is there a better 6.1.x version to make leap from 6.0.1

...

Resolved! VPN Proxy ID nightmare

Hi All,

I can't seem to resolve proxy-id mismatch on a Route-based VPN i have configured between the PAN Firewall and a Cisco 3G router.

On the PAN side, I have configured 10.5.0.0/16 as my local proxy-id and 0.0.0.0 as proxy-id of remote side. I sti

...

Bocsa by L3 Networker
  • 5175 Views
  • 7 replies
  • 0 Likes

WildFire & Office Documents/PDFs - Limitations?

We currently use Wildfire on "PE Executable" filetypes on our PA-500.

 

I'm interested in using it against Office documents and PDFs as those are clearly a major threat vector.

 

Thing is, whatever model of Palo Alto I look at, they all seem to show

...

Block unwanted traffic on port 1720

Hi,

 

I have a voice/visioconference system available on the internet (via NAT-ed IP) using H323. So of course the port 1720 is open and reachable from outside, without restriction on IP addresses because users must be able to reach the system from t

...

NVogel by L0 Member
  • 3174 Views
  • 2 replies
  • 0 Likes

Authentication Profiles on Global Protect

 

Is it possible to have two sets of authentication profile on Global Protect ? One ste of users authenticating through AD and another set through digital certificates only . 

usvi by L3 Networker
  • 1892 Views
  • 1 replies
  • 0 Likes

Resolved! Email alerts for threats.

Do I need Panorama to set up email notifications on high and critical severity threats? I know you can set up sheculed reports, but what if I just want to receive an email when a threat is blocked or detected, or what have you.

Netwerx by L2 Linker
  • 5437 Views
  • 3 replies
  • 1 Likes

SRX Config - XML Invalid

Since upgrading to MT 3.2.4 I have been unable to import the XML file from a SRX .  Previous to this release (3.2.1), I had no issues with the same XML.  However, it is not working on 3.2.4

 

The XML file is correct with the configuraiton tags at the

...

indysogi by L2 Linker
  • 2977 Views
  • 1 replies
  • 0 Likes

Meaningful User Reports

  • PA-500
  • Software Version 7.0.3

 

How do I generate meaningful user reports, or how do I better interpret the reports that are available.

 

With a User Activity Report I get application statistics, browsing summary by category etc.  But I can't say "Use

...

PinkCup by L0 Member
  • 2472 Views
  • 2 replies
  • 0 Likes

Resolved! Rudimentary TCP Session and Monitor Question

I feel like I should already know this, but I just need a sanity check.

 

I have a rule that allows host A to B via tcp/900.  So host A starts to communicate via host B via that port.  The firewall allows it and a session is created.  Now, assume A a

...

mrcs by L0 Member
  • 2787 Views
  • 4 replies
  • 0 Likes

third party VPN clients with PanOS 7.0.3

I was curious if anybody else has seen this issue, or could perhaps try to duplicate it.

 

I have a problem with third party VPN clients after upgrading from PanOS 6.1.6 to 7.0.3 on our PA-3020s.  Specifically, the built-in IPSec VPN client on Mac OS

...

SSL Decrypt

Hi

 

We have a guest wifi that availave to all and sundry to be used by using their own equipment. We would like use SSL Decryption on this.

 

The main issues is that for guest device we have no control over this to be able to install the CA cert ont

...

RC-BHF by L2 Linker
  • 3147 Views
  • 2 replies
  • 0 Likes
  • 23824 Posts
  • 112 Subscriptions
Top Liked Authors
Labels