General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2982 Views
  • 2 replies
  • 14 Likes

Resolved! Trusting QOS markings

will the PAN-OS automatically trust markings applied by other systems on the network or do I need to make a policy in addition to the policy on the rest of the network?

kkeeton by L2 Linker
  • 8791 Views
  • 10 replies
  • 0 Likes

email notification

Is it possible to set up a notification by email to let you know when one and only one vpn tunnel goes down? I also want to be able to turn it off once I am done troubleshooting

infotech by L4 Transporter
  • 3428 Views
  • 8 replies
  • 0 Likes

Allow Spotify authentication, but not streaming

It there a way to allow Spotify to authenticate, but disallow streaming (both from web and apps?)

As-is there are only one AppID for Spotify, and this blocks everything.

Users having the app in offline mode has go go online every 30 day to regain new 3

...

Start VPN from C# or script

Hello!

Is there a way to instruct the Windows GlobalProtect Agent 2.0.3-5 (that ist completely configured for the current Windows User) to Start the VPN from C# (or from within a script)?

Thanks for any Ideas,

Jürgen.

Firewall he is covering under some vulnerability

Hi friends,

Need suggestion

Actually when auditor running Vulnerability scaner tool then on Firewall he is covering under some vulnerability

> Upgrade to the latest version of OpenSSL

>  Use a strong key

>  Disable SSL support for weak ciphers

So for the

...

Satish by L4 Transporter
  • 1748 Views
  • 3 replies
  • 0 Likes

DSCP marking over ipsec VPN

Hello,

I inherited a network with 4 sites connected together via 3 PA-500's and a PA-2020. We have implemented Lync for VOIP and I'm having issues getting packets to retain their tags across the VPN (internal to the tunnel is all I want) I can't seem

...

traty by Not applicable
  • 4207 Views
  • 4 replies
  • 0 Likes

Filtering Systemlog

I'd like to filter the log in order to get lines containing e.g. "BSS".

It works when filtering the description column :  ( description contains 'IKE protocol IPSec SA delete message received from peer. SPI:0xAB229BB0.' )

It works when filtering the ob

...

rkra by L2 Linker
  • 2147 Views
  • 2 replies
  • 0 Likes

Packet capture filters

Hello.

Does anyone else have problems with defining filters for packet capture in WebUI?

If I understand correctly (there is no info about this in official documentation) all values in the same filter are logically connected with 'AND' operator. And lo

...

santonic by L6 Presenter
  • 4493 Views
  • 6 replies
  • 0 Likes

Can not access management by WebUI

I can not access palo alto by web management https://xxx.xxx.xxx.xxx

When I login,it redirect to page login again.

I can access ssh and I see patition root is use 100%.

BaNk by L1 Bithead
  • 3113 Views
  • 2 replies
  • 0 Likes

ssl decryption certificate

HI FRIENDS,

Now days i am facing a challenge ssl decryption certificate. i have a create a ssl decryption policy for block few App -ID after SSL decryption we got certificate error client side any suggestion???

Regards

Satish

Satish by L4 Transporter
  • 2871 Views
  • 7 replies
  • 0 Likes

Resolved! Panorama template push on production devices

I have an environment where there are Palo Alto firewalls already deployed and in production (mix of PA-200's & PA-500's), I am building the templates but I want to make sure that when I push them out the templates won't wipe out the management inter

...

ericv by Not applicable
  • 14612 Views
  • 4 replies
  • 1 Likes

use cases of Panorma Templates

hey

i am missing a good use case for configuring Panorama Template for a large site arround 60 PA (all single).

i dont think it will be smart to configure all of them from Panorama using "Template per device" method,

because for example some configurati

...

minow by L4 Transporter
  • 2051 Views
  • 0 replies
  • 1 Likes

AD interation and recently created user - problem

Hello

I'm using user ID with agents on DC. Today I got strange problem.

I created new user and I try to logon to GP portal and user GP client. Everytime I got in logs invalid username or password.

I know:

>debug user-id refresh group-mapping all  (non-in

...

_slv_ by L4 Transporter
  • 1997 Views
  • 2 replies
  • 0 Likes
  • 24040 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors