General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Setting up second gateway: Gives Cert CN error

Hello all,

I have a (working) Global Protect Portal+Gateway envrionment. I am now trying to setup a gateway in a second datacenter. I have setup the same GP-cert and Client-Cert, cert_Profile and GP Gateway settings. The gateway works, when setting a

...

bsanders by L2 Linker
  • 1773 Views
  • 2 replies
  • 0 Likes

How to custom a DNS query and block it ?

There has Dynamic Block Lists to block unwanted IPs.

And there has DNS signature in Anti Spyware profile.

Above are all helpful to block malicious sites.

And if I found a bad dns query, is there any way to create custom dns block lists?

Yscheng by L0 Member
  • 756 Views
  • 1 replies
  • 0 Likes

Resolved! Scheduled Backups from Panorama to [location]

(Think I know the answer to this already but...)

Panorama 4.1.14

We have a NAS that I would like to push automated exports to from Panorama. I would like to ftp export to a specific path (we don't use user Home paths) but can't seem to do it. Only the

...

nickcx1 by Not applicable
  • 1840 Views
  • 3 replies
  • 0 Likes

Resolved! Possible issues with Application update version 396

We are seeing issues with Google ssl traffic being identified as Ultrasurf.  Problem went away when we backed out the update (which included updates to the ultrasurf application definition).  Ticket is into Support.  May want to avoid updating to 396

...

HITSSEC by L4 Transporter
  • 4667 Views
  • 17 replies
  • 0 Likes

PanGP- Connection verification

Hey guys,

Anyone has had this issue with GP?

The PanGP virtual NIC is making a "connection verification" for "ages" and nothing happens.

I have made a workaround to solve this problem but would like to know what is the reason for it.

Of 100 clients, I ha

...

ron_maiga by Not applicable
  • 1896 Views
  • 5 replies
  • 0 Likes

User loses privileges...UserID

In our company we have two internet browsing profiles.
Users who belong to the AD Domain users have limited access to internet and users AD group belongs to UsuariosInternet can access anywhere.


My AD user is canopr and I have internet access from my P

...

Cleaning obsolete firewall rules

Hi all,

We have recently migrated from Juniper to Palo Alto firewall and there are numerous firewall rules that are obsolete and potentially a security risk to me. I tried to use "highlight unused rules" button but it does not seem consistent to me. A

...

Blue Coat Cloud Service Integration

Hi all,

I have some experience with PAN firewalls and I have found a new challenge (the new challenges never stop...).

We are going to integrate some offices with the "Blue Coat Cloud Service".  This integration requires to build a ipsec vpn with the B

...

Globalprotect msi

Hello

Is there a difference between the Globalprotect msi files you can download from the software support site and the Globalprotect msi files you can download from your own Globalprotect portal ?

The reason why I ask: I'm testing deployment of the GP

...

dieter_b by L4 Transporter
  • 2199 Views
  • 5 replies
  • 0 Likes

App-ID updates break existing rules

Howdy,

How do most of you manage situations where App-ID updates break functioning rules?  This just happened to me: I have Lync 2010 and the internal clients need to connect to the edge server.  I had a rule in place that allowed ms-lync, ssl, and st

...

msullivan by L3 Networker
  • 3112 Views
  • 8 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors