General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1690 Views
  • 0 replies
  • 0 Likes

NAT question when migrating config.

Converting config from Nortel Connectivty switch to PA200.

3 interfaces

untrust - public ip - 202.3.41.0/28

trust:private ip - 10.10.10.0/24.

dmz-203.4.42.96/28

 

There is one to one mapping of few untrust ip to trust ips( to access trust ips from ou

...

Moving a VSYS from one PA device to another

Hello

Question here , how can we move a VSYS from one device to another ? please note that in this scenario we cannot backup everything a restore on target since target is running other things that need to be running .

Any ideas ? what are important th

...

Resolved! Get information on Security Profiles our of PANOS?

Hi all,

 

My team is currently undergoing an audit and one of the requests is for the configuration of the security profiles, including URL filtering, from our firewalls.  As we are fairly new to PANOS this has not been requested before.  I don't see

...

RSKadish by L2 Linker
  • 5231 Views
  • 4 replies
  • 0 Likes

Resolved! Security flaw with GlobalProtect?

Hi,

While setting up a computer with fingerprint authentication+windows password, I discovered that after installing GlobalProtect I could circumvent the whole two-factor authentication by choosing to login with GlobalProtect(clicking the GP icon in t

...

SSL decryption issues with latest Firefox

I'm having SSL decryption issues with the latest versions of Firefox.

In Firefox i get following error when visiting a https site:

Secure Connection Failed

An error occurred during a connection to live.paloaltonetworks.com. security library: improperly

...

dieter_b by L4 Transporter
  • 13675 Views
  • 17 replies
  • 0 Likes

qos report

Hi

 

How can i generate a throuput report on my untrust interface .
And how can i genearate qos report like class 1 and class 2 usage for a period of time )

Thank you 

sib2017 by L4 Transporter
  • 3892 Views
  • 4 replies
  • 0 Likes

Minemeld AWS user data error

hi all,

I spun up a linux server in AES and followed the instruction to import user data from here https://minemeld-dist.s3.amazonaws.com/0_9/minemeld-cloud-init-0.9.0rc2.b64

according to the instruction, the user data was encoded in base 64, but it

...

TS agent on XenApp 7.7?

Hi!

 

As i can see the newest TS agent(7.0.2) is only supporting XenApp 5.0/6.0/6.5. 

 

I have a customer that wants to get UserIDs from Citrix and then use AD groups to limit access to resources. BUT the customer is running on XenApp 7.7. Anyone who

...

Global Protect Slowness

We recently installed a PA-3020 on a 1G circuit and are experiencing very low speeds when clients are conecting in using GlobalProtect. When connecting in from home on a 20M connection we are seeing speed drops down to a max of 5M (mostly lower). We 

...

drischar by L1 Bithead
  • 9736 Views
  • 10 replies
  • 0 Likes

Problems with XFF cleaning

Dear all,

we are getting more and more problems with the way PA handles the X-forwarded-for header.

It is very useful in getting the internal client IP in a proxy environment. OTOH, you need to clean it before it goes out so that you don't leak interna

...

AndreasB by L2 Linker
  • 9192 Views
  • 14 replies
  • 0 Likes

GlobalProtect: Pre-Login and user cert based auth?

Hi All,

 

I've successfully configured pre-login and can enter my creds in to the GP client the first time I log in and it works great. Is there a way to use a user certificate for the user auth and avoid any action on the users part for auth?

 

Desi

...

record reached max ression number

Hi

Pls advise if we have CLI cmd that record the PA box  reached max session number till now ...So I can assess if it will reach our session limited .

Thanks

Jeff Jin

JeffJin by L2 Linker
  • 3976 Views
  • 5 replies
  • 0 Likes

Resolved! Hardware Upgrade

Can anyone tell me the best way to upgrade from a HA pair of PA-2020's to new PA-3050's.

 

 

rrobins by L0 Member
  • 5572 Views
  • 3 replies
  • 0 Likes
  • 24216 Posts
  • 117 Subscriptions
Top Liked Authors
Labels