General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Vypr VPN

Hi, Has anyone used VYPR VPN. We are seeing users use this quiet a lot and they are bypassing the firewall to get onto whatever they want. We have submitted to PAN to create an application for this as one does not currently exist, but we need to block this in the mean time. I know we can create a custom application for this, but I am not e...

Resolved! Access to some posts being denied. Access to restricted areas of the portal.

Hello, everyone! Can someone please tell me what I need to do to be granted access to the restricted area of the portal? I am looking for information about compatible third party SFP and SFP+ transceivers for 5000 series. I tried to reach this link: https://live.paloaltonetworks.com/t5/Archived-KB/Archived/ta-p/59404, but my access was denied: ...

Capture.PNG
r3dp1ll by L1 Bithead
  • 8547 Views
  • 6 replies
  • 0 Likes

Resolved! Games consoles behind a PA-500

Good afternoon all,We are trialling a PA-500 at the moment and so far very impressed with the device. We have managed to configure everything we are likely to need to do through the firewall but this isn't a show stopping question/issue.We have multiple Xbox 360's and Playstation 3's here and the number will be increasing. We would like to be ...

SSL Descryption Windows 8

Hello everyone,I have a big problem with SSL decryption. I introduced it in my network and I sent certificate via GPO to all computers. On Windows 7 all is working but on Windows 8 I received information about a bad certifcate. Obvously I checked certificate container and all is fine but this doesn't work..

ITBT by L1 Bithead
  • 2198 Views
  • 1 replies
  • 0 Likes

Recommended version PanOS for this vulnerability Unauthenticated Buffer Overflow in GlobalProtect/SS

Hi, Can you tell me the recommended version/stable from Palo Alto in PanOS (6.x and 7.x) to mitigate this new vulnerability: Unauthenticated Buffer Overflow in GlobalProtect/SSL VPN Web Interface I recommended the 6.0.12 and 7.0.4 to my customers but after this vulnerability i have to change the recommended version. Regards,

Google Drive & Drop Box

Hello We are in the process of setting up SSL Decryption. I am aware that it will break googledrive and dropbox desktop application. For google drive I am aware that you can set a unsafe network flag as a workround Does any have a list of URL that need to be put on to the no decrypt list for these two application to work ?

RC-BHF by L2 Linker
  • 2505 Views
  • 1 replies
  • 0 Likes

Palo VM not redistributing routes

I've attached a screenshot of the portion of the network I'm working on. Our edge routers connect to ISP, ISP advertises a default route to our Cisco ASR. On the ASR I have BGP peering with the ISP and OSPF for internal routing. I have default-information originate on ASR. Connecting to the ASR I have a Palo Alto VM with OSPF adjacency forme...

Network.jpg
LShelton by L1 Bithead
  • 3132 Views
  • 3 replies
  • 0 Likes

Is 29 februari a myth?

I wanted to do an update to our firewall today and to my surprise i recieved the following error: ValueError: day is out of range for month Failed to load into software manager. Please retry. Post processing failed. Please retry. Apparently there is one day in four years which is considderd "no update day" 😛

Resolved! Improvement Request: DaGPusher

Hi Luigi, Is there any plans to customize the tag criteria sent through DaGPusher? If you have two DagPusher from two different miners, it is complex to figure out which one is coming from one DaGPusher and which one is coming from another. Thanks Regards,

Resolved! BUG : DAGPusher Output Node UI?

Hi Luigi, With MineMeld 0.9.3 running on VMware Fusion, DAGPusher Output Node Handled devices list does not appear (see attached screenshots). Tested with Safari 9.0.3 (11601.4.4) and 48.0.2564.116 Thanks Bertrand

Resolved! DHCP Option 66

Hi All, I want to configure DHCP options 66 on Palo Alto firewalls with PAN-os version 6.1. It seems that before 6.1 version is it possible but now is not included. Is there any workaround in order to set this one? For example is it possible via CLI? Thanks in advance, Best Regards Luca

About url-block-cache

Hello, I have some questions about url-block-cache. I use continue action on url-filtering. URL Contiunue Time is set 12 hours. 1. HA is Active-Active on L3. It seems to no share url-block-cache between peers. Each results is different from "show system setting ctd url-block-cache" command. Right? 2. How many can PA have on url-block-cache...

  • 24403 Posts
  • 123 Subscriptions
Top Solution Authors
Labels