General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 424 Views
  • 0 replies
  • 2 Likes

Problems with SSL-Decryption

Hi,

since a few days, we have more and more websites, which we are unable to login. After further investigation i'm sure there's something wrong with SSL-decryption, if I exclude the IP from encryption the sites work. But formerly the problem doesn't

...

ITSama by L2 Linker
  • 3779 Views
  • 5 replies
  • 0 Likes

captive portal issue

Hi All,

We configured captive portal-redirect with local db

when unknown users(who are not in AD,belongs to local db) redirected and web form is authenticated.

But the problem is they can't browse internet. Browser shows" page not loaded" to those user

...

Javith by L3 Networker
  • 2557 Views
  • 3 replies
  • 0 Likes

Resolved! Domain Administrator no Authentication??

Has anybody an idea, why the Active-Directory authentication works from every location in our company with every domain-user, but if I use the Domain-Administrator-Account I always forced to use the login credentials with Captive-Portal??

ITSama by L2 Linker
  • 4943 Views
  • 6 replies
  • 0 Likes

Resolved! Trusting QOS markings

will the PAN-OS automatically trust markings applied by other systems on the network or do I need to make a policy in addition to the policy on the rest of the network?

kkeeton by L2 Linker
  • 9879 Views
  • 10 replies
  • 0 Likes

email notification

Is it possible to set up a notification by email to let you know when one and only one vpn tunnel goes down? I also want to be able to turn it off once I am done troubleshooting

infotech by L4 Transporter
  • 3925 Views
  • 8 replies
  • 0 Likes

Allow Spotify authentication, but not streaming

It there a way to allow Spotify to authenticate, but disallow streaming (both from web and apps?)

As-is there are only one AppID for Spotify, and this blocks everything.

Users having the app in offline mode has go go online every 30 day to regain new 3

...

Start VPN from C# or script

Hello!

Is there a way to instruct the Windows GlobalProtect Agent 2.0.3-5 (that ist completely configured for the current Windows User) to Start the VPN from C# (or from within a script)?

Thanks for any Ideas,

Jürgen.

Firewall he is covering under some vulnerability

Hi friends,

Need suggestion

Actually when auditor running Vulnerability scaner tool then on Firewall he is covering under some vulnerability

> Upgrade to the latest version of OpenSSL

>  Use a strong key

>  Disable SSL support for weak ciphers

So for the

...

Satish by L4 Transporter
  • 2035 Views
  • 3 replies
  • 0 Likes

DSCP marking over ipsec VPN

Hello,

I inherited a network with 4 sites connected together via 3 PA-500's and a PA-2020. We have implemented Lync for VOIP and I'm having issues getting packets to retain their tags across the VPN (internal to the tunnel is all I want) I can't seem

...

traty by Not applicable
  • 5163 Views
  • 4 replies
  • 0 Likes

Filtering Systemlog

I'd like to filter the log in order to get lines containing e.g. "BSS".

It works when filtering the description column :  ( description contains 'IKE protocol IPSec SA delete message received from peer. SPI:0xAB229BB0.' )

It works when filtering the ob

...

rkra by L2 Linker
  • 2480 Views
  • 2 replies
  • 0 Likes

Packet capture filters

Hello.

Does anyone else have problems with defining filters for packet capture in WebUI?

If I understand correctly (there is no info about this in official documentation) all values in the same filter are logically connected with 'AND' operator. And lo

...

santonic by L6 Presenter
  • 5398 Views
  • 6 replies
  • 0 Likes

Can not access management by WebUI

I can not access palo alto by web management https://xxx.xxx.xxx.xxx

When I login,it redirect to page login again.

I can access ssh and I see patition root is use 100%.

BaNk by L1 Bithead
  • 3424 Views
  • 2 replies
  • 0 Likes

ssl decryption certificate

HI FRIENDS,

Now days i am facing a challenge ssl decryption certificate. i have a create a ssl decryption policy for block few App -ID after SSL decryption we got certificate error client side any suggestion???

Regards

Satish

Satish by L4 Transporter
  • 3255 Views
  • 7 replies
  • 0 Likes

Resolved! Panorama template push on production devices

I have an environment where there are Palo Alto firewalls already deployed and in production (mix of PA-200's & PA-500's), I am building the templates but I want to make sure that when I push them out the templates won't wipe out the management inter

...

ericv by Not applicable
  • 17844 Views
  • 4 replies
  • 1 Likes
  • 23696 Posts
  • 110 Subscriptions
Top Solution Authors
Labels