General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 428 Views
  • 0 replies
  • 2 Likes

PPPoE issue

Hi Support Team.

I have problem with PPPoE on Palo Alto PA 3050

I config with true User and Password.

my ISP reset MAC already.

But PPPoE still failure.

Pls help me.

Thanks

dat.tran by L2 Linker
  • 2563 Views
  • 2 replies
  • 0 Likes

Scheduled Reports generate differently.

I have a number of reports we use to generate usage information, such as the top 100 applications used over 24 hours sorted by bytes.

If I run this report manually with RUN NOW, it generates perfectly and everything is sorted like it should be.


If we s

...

kk555 by L0 Member
  • 4390 Views
  • 7 replies
  • 0 Likes

Resolved! Add source NAT: Bi-directional NAT breaks

Hello,

1. I have three zones: Public, DMZ, Private

Public interface: bound to 164.67.80.124/26

Private interface: bound to 192.168.1.1/24

DMZ interface: bound to 192.168.2.1/24

2. I use bi-directional NAT to expose a few of the DMZ machines via their own

...

cstech by L2 Linker
  • 7021 Views
  • 10 replies
  • 0 Likes

Global Protect Client 1.x.x ended?

Hello

Is Global Protect Client 1.x.x ended? Since may 2014 when we got 1.2.10 there isn't any new update when 2.0.x got two new versions.

Is a time to move to 2.0.x version?

With regards

SLawek

_slv_ by L4 Transporter
  • 1752 Views
  • 1 replies
  • 0 Likes

Policy Based Forwarding applications

I realize that PBF application based routing is limited to a subset of applications supported.

We're specifically looking to use PBF for Outlook-Web-Online and it's not in the list but many other things are, like MS-OCS-* and SMTP, etc...

Do we know wh

...

kk555 by L0 Member
  • 3341 Views
  • 2 replies
  • 0 Likes

PA-200 configuration for low bandwidth site

Hi there,

We have a PA-200 recently deployed at a low bandwidth field site. Monitoring the traffic shows the majority of traffic is from the PA-200 itself, checking for updates, Panorama, Wildfire, etc. Is there a way to configure a PA-200 to only per

...

rmilman by Not applicable
  • 2967 Views
  • 5 replies
  • 0 Likes

Address Object Cleanup

Does anybody have any suggestions on how to easily cleanup unused address objects. I recently migrated from Cisco ASA, and I'd like to cleanup some of the old garage objects that I brought over that are no longer being used.

Thanks!

bbilut by L3 Networker
  • 3263 Views
  • 3 replies
  • 0 Likes

Resolved! Possible to block specific files by hash?

If we are given a document which shows specific files used by bad actors in our sector, is it possible to have the PAN alert/block on these files? I have the SHA256 and MD5 hashes.

SDorsey by L4 Transporter
  • 10569 Views
  • 6 replies
  • 0 Likes

GlobalProtect - Disk encryption

Hi,

I already searched about this topic but I did not find anything useful.

I want to force our clients to have disk encryption enabled when they want to access our Network via GlobalProtect. I am able to check if the Encryption Software is installed

...

SSL Certificates CA Verisign

Hello,

we have import the CA Certificate from Verisign and want to activate the Antivirus function (policies).

But only the

"Trusted Root CA"

is available in the "Certificate Information"

the option "Forward Trust Certificate" is gray and not available.

B

...

Integrated User-ID Agent

Has anyone started using this new feature in PAN-OS 6.x?

I have 20+ firewalls and I'm really not looking forward to deploying/managing 20+ Kiwi Syslog servers. In our environment, we collect SNMP traps from our WLCs and send the parsed data to the UID

...

SSL decryption for public use ?

We provide internet access for public use (wifi hotspot). For better control and visibility, I would like to introduce SSL decryption (we already use it for our internal users). But there is no way I can deploy the certificate to those users (who I d

...

dieter_b by L4 Transporter
  • 3131 Views
  • 5 replies
  • 0 Likes

Global Protect time out - automatic reconnect attempt?

We're experiencing this with Windows and OSX clients.

The user connects on Monday, tunnel times out after 24 hours.

User doesn't disconnect but lets the connection time out naturally.   Immediately after time out, they receive an attempt to re-auth eve

...

kk555 by L0 Member
  • 9951 Views
  • 15 replies
  • 0 Likes
  • 23698 Posts
  • 110 Subscriptions
Top Solution Authors
Labels