General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 238 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3551 Views
  • 2 replies
  • 14 Likes

Re: Welcome to LIVEcommunity! Start Here.

Olá @Marcos1991 

 

Algo que pode testar é a liberação de portas de VPN udp, já precisei em algum momento utilizar-se disto.

https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/firewall-administration/reference-port-number-usage/ports-used-for-ips

...

User cannot connect to Global protect portal.

The error message on this users GP client says they have an issue with they're certificate. The helpdesk apparently installed a certificate but I am not sure which one or where exactly. Now its telling me it cant access the portal at all. I want to d

...

Resolved! Ping management interface

Hi Initial configuration is like the below. why we cannot ping 192.168.8.100 ? i would like to allow the firewall to be ping and accessed via https. Maybe it need to add some command . Anyone can provide some suggestion? Thank you

 

admin@PA-VM> conf

...

Global Protect on Linux not working

I've tried GP on both Ubuntu 22.04 and AlmaLinux.I got the GP app from University of Texas at Dallas.
Neither worked. I got a SSL Handshake error.
Anybody with a successful experience to share?

Cheers

 

Resolved! DNS over TLS in 10.2.4

Hi All

 

it seems like late last year DNS over TLS feature has been added to Palo Alto firewalls

 

However I am having issues understanding where it needs to be configured, I did read the guides but still unclear

 

So my external dns is 1.1.1.1 and I

...

nevolex by L3 Networker
  • 1237 Views
  • 2 replies
  • 0 Likes

warning msg on CLI

Hi,
 
While logged into the CLI on our PAN-OS, received the following error messages:
 
2016-07-20 12:17:16.783 +1000 Warning:  pan_hash_init(pan_hash.c:112): nbuckets 100 is not power of 2!
2016-07-20 12:17:16.783 +1000 Warning:  pan_hash_init(pan_hash.c
...

fmustafa by L1 Bithead
  • 5582 Views
  • 3 replies
  • 0 Likes

Re: Welcome to LIVEcommunity! Start Here.

Olá @Marcos1991 

 

Sobre as VPNs, as polices estão criadas para permitir comunicação entre as zonas de segurança? Há NAT de saída para "Internet"?

Vejas se estas docs lhe auxiliam:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g00000

...

Changing interfaces

What are the steps to move the global protect VPN portal and gateway from one interface to another on the Palo Alto firewall?  We are wanting to move it to it's own interface.

Gary-P by L0 Member
  • 947 Views
  • 2 replies
  • 0 Likes

SSL inbound inspection

We want to apply inbound SSL inspection and our certificate from Digitcert and based on this document
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEZCA0
there is a note says "Because SSL certificate providers such as Ent

...

Re: Welcome to LIVEcommunity! Start Here.

Opa, estou conhecendo mais sobre Palo alto e estou com uma dificuldade para fechar vpn ipsec no meu LAB.
A vpn nao fecha.

PA-A
ETHERNET1/1
Local ip - 100.0.0.1/24
Peer - 30.0.0.1
Rede local - 10.0.5.0/24
Rede Remota - 10.0.4.0/24

----------------------------

...

Marcos1991_0-1681183732224.png
  • 24169 Posts
  • 100 Subscriptions
Labels