General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 194 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 877 Views
  • 0 replies
  • 0 Likes

Resolved! This webservice call is only available to Panorama

Dear folks,

A few weeks ago we noticed a strange error message in our Panorama management software. If we navigate to "Panorama \ Device Deployment \ GlobalProtect Client" we receive the following error message:

We close the message box but the area st

...

oschuler by L4 Transporter
  • 2845 Views
  • 2 replies
  • 0 Likes

site-to-site vpn from Sophos

IKE coming from a Sophos device is incorrectly identified as application ciscovpn instead of application ike.

Is this because Sophos uses cisco-ish protocol ? All I see in the logs is udp 500...

I'm happy allowing application ike, our other site-to-sit

...

dieter_b by L4 Transporter
  • 2634 Views
  • 3 replies
  • 0 Likes

Ignore usernames that start with sophos?

On our servers we have the User-ID being mapped as companyname.com\sophosCOMPUTERNAME

Sophos is our AV software which uses that account for getting updates. Is there anyway for me to add any names beginning as sophos to my ignore_user_list.txt?

pmc by L2 Linker
  • 1869 Views
  • 1 replies
  • 0 Likes

DShield top 20

Is anyone currently using this dshield top 20 list subscription? How well does it work/ Is anyone blocking inbound, outbound or both? What is the best way to configure it?

jdprovine by L4 Transporter
  • 3787 Views
  • 6 replies
  • 0 Likes

YouTube Safety Mode

Hello,

Right now we are using Safe search enforcement for staff and students.  We allow YouTube for both groups but require Safety Mode to be enabled.  However, we have been running into a lot of issues with YouTube flagging videos as inappropriate ev

...

Unblock IP address after threat triggered block-ip

Suppose a long time value was set for a threat where one had set the action to block-ip - say 10 minutes

Is there any way via the CLI or GUI to see the list of IP addresses that are blocked due to the threat engine?

Better still, is there a way to clea

...

How many security rule supported for PA7050?

Hi guys.

Nowadays I have got a project for installing PA7050 but I confused about the PA7050 how many security rule supported for PA7050. Several months ago, I checked the DataSheet and Compare tools of PA7050 that mentioned PA7050 supported 80,000 ru

...

Resolved! Panorama Application and Antivirus discrepancy!

Currently our Panorama General Information window on the dashboard is showing the following:

Device Name: SA-PANMGMT1

Application version: 489-2600 (03/03/15)

Antivirus Version: 1503-1978 (03/10/15)

I change context to one of our two firewalls (both the

...

Crash28 by L1 Bithead
  • 2210 Views
  • 1 replies
  • 0 Likes

Site to site VPN with isa server firewall

Dear Friends,


I am facing some challenge, vpn configuration with ISA server firewall. Ph-1 is up but PH-2 is not. when i put the proxy id both side firewall external ip , both Ph is up. when i put the LAN segment like (local 172.30.30.0/24 remote 192.

...

Satish by L4 Transporter
  • 1947 Views
  • 1 replies
  • 0 Likes

The Check Point Advantage

3 years ago, we replaced Check Point firewalls with Palo Alto Networks.

Seems this was a huge mistake. We might have to go back …..

The Check Point Advantage

"Palo Alto Networks, a newcomer to security, falls short in their architecture and solutions"

A

...

Dulle by L2 Linker
  • 6886 Views
  • 5 replies
  • 1 Likes

Interface Names (for purposes of SNMP)

Is there any way to change the name or description of an interface in the device configuration? We use What's Up Gold to monitor most devices on our network- it walks SNMP and retrieves the default names just fine (mgmt, ha1, ethernet1/1, ethernet1/2

...

ShaunD by L1 Bithead
  • 3966 Views
  • 2 replies
  • 0 Likes

Resolved! LACP and HA pair

My tested design has been to LACP between the same LAG (i.e. AE0) on the PA primary and secondary units, to different LAG entries (ie. AE0, AE1) on the outside and inside equipment (Both Juniper).  I have one device though (Juniper SRX) that has VPN

...

  • 24011 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels