General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Trusting QOS markings

will the PAN-OS automatically trust markings applied by other systems on the network or do I need to make a policy in addition to the policy on the rest of the network?

kkeeton by L2 Linker
  • 9676 Views
  • 10 replies
  • 0 Likes

email notification

Is it possible to set up a notification by email to let you know when one and only one vpn tunnel goes down? I also want to be able to turn it off once I am done troubleshooting

infotech by L4 Transporter
  • 3846 Views
  • 8 replies
  • 0 Likes

Allow Spotify authentication, but not streaming

It there a way to allow Spotify to authenticate, but disallow streaming (both from web and apps?)

As-is there are only one AppID for Spotify, and this blocks everything.

Users having the app in offline mode has go go online every 30 day to regain new 3

...

Start VPN from C# or script

Hello!

Is there a way to instruct the Windows GlobalProtect Agent 2.0.3-5 (that ist completely configured for the current Windows User) to Start the VPN from C# (or from within a script)?

Thanks for any Ideas,

Jürgen.

Firewall he is covering under some vulnerability

Hi friends,

Need suggestion

Actually when auditor running Vulnerability scaner tool then on Firewall he is covering under some vulnerability

> Upgrade to the latest version of OpenSSL

>  Use a strong key

>  Disable SSL support for weak ciphers

So for the

...

Satish by L4 Transporter
  • 1971 Views
  • 3 replies
  • 0 Likes

DSCP marking over ipsec VPN

Hello,

I inherited a network with 4 sites connected together via 3 PA-500's and a PA-2020. We have implemented Lync for VOIP and I'm having issues getting packets to retain their tags across the VPN (internal to the tunnel is all I want) I can't seem

...

traty by Not applicable
  • 4921 Views
  • 4 replies
  • 0 Likes

Filtering Systemlog

I'd like to filter the log in order to get lines containing e.g. "BSS".

It works when filtering the description column :  ( description contains 'IKE protocol IPSec SA delete message received from peer. SPI:0xAB229BB0.' )

It works when filtering the ob

...

rkra by L2 Linker
  • 2429 Views
  • 2 replies
  • 0 Likes

Packet capture filters

Hello.

Does anyone else have problems with defining filters for packet capture in WebUI?

If I understand correctly (there is no info about this in official documentation) all values in the same filter are logically connected with 'AND' operator. And lo

...

santonic by L6 Presenter
  • 5211 Views
  • 6 replies
  • 0 Likes

Can not access management by WebUI

I can not access palo alto by web management https://xxx.xxx.xxx.xxx

When I login,it redirect to page login again.

I can access ssh and I see patition root is use 100%.

BaNk by L1 Bithead
  • 3366 Views
  • 2 replies
  • 0 Likes

ssl decryption certificate

HI FRIENDS,

Now days i am facing a challenge ssl decryption certificate. i have a create a ssl decryption policy for block few App -ID after SSL decryption we got certificate error client side any suggestion???

Regards

Satish

Satish by L4 Transporter
  • 3169 Views
  • 7 replies
  • 0 Likes

Resolved! Panorama template push on production devices

I have an environment where there are Palo Alto firewalls already deployed and in production (mix of PA-200's & PA-500's), I am building the templates but I want to make sure that when I push them out the templates won't wipe out the management inter

...

ericv by Not applicable
  • 17180 Views
  • 4 replies
  • 1 Likes

AD interation and recently created user - problem

Hello

I'm using user ID with agents on DC. Today I got strange problem.

I created new user and I try to logon to GP portal and user GP client. Everytime I got in logs invalid username or password.

I know:

>debug user-id refresh group-mapping all  (non-in

...

_slv_ by L4 Transporter
  • 2202 Views
  • 2 replies
  • 0 Likes

TS Agent 6.0.3 on Windows Server 2012

Hi all,

this is my environment:

PA3020 PANOS 6.0.2

3 Terminal Servers running on Windows Server 2012 R2 Datacencer, each one having PA TS Agent 6.0.3-8 onboard.

Documentation states that Windows Server 2012 is supported by TS Agent starting from 6.0.2, i

...

  • 23560 Posts
  • 106 Subscriptions
Labels