General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

ECCN for PAN-OS

Hello, I require the ECCN for your software, PAN-OS. I do not have access to the 'HW Accessory Cross Reference' link I have seen posted. Alternatively, please provide an email address to your Trade Compliance team so I can contact them directly. Thank you.

ECJTBBAE by L0 Member
  • 1628 Views
  • 1 replies
  • 0 Likes

Packet drops with Unknown-TCP

Hi Team, Need your suggestion on below. We have created a policy to allow access to a site with URL filtering. Created new category to the specific set of URL and then allowed the same in URL Filtering Profile and called the same in ACL. Source is set to LAN Range, Destination is set to Any, Application is set to Any, Service is set to Any, URL ...

Allow only global protect from trust to untrust.

Hi Everyone Greeting. I need to allow only the GlobalProtect application from the trust to the untrust zone, by allowing: First security policies : source trust -> destination untrust -> Application DNS -> Allow Second security policies : source trust -> destination untrust -> The Paloalto-shared-services application, by openi...

ariiero by L1 Bithead
  • 1775 Views
  • 2 replies
  • 0 Likes

Explicit proxy chaining

Hello, I like the explicit proxy functionality but missing option to use proxy chaining and forward all the explicit proxy requests to an upstream proxy. Some ideas how to archive this? Thanks for any recommendations Lumir

itsnoc by L1 Bithead
  • 2116 Views
  • 3 replies
  • 0 Likes

PA-440-LAB purchase without going thru my employer

Anyone know where and how I can purchase the PA-440-LAB bundle without going thru my companies account and vendor? I did that with the 220 and it was a nightmare. I want to setup an individual PA account for support and licensing and acquire the lab bundle directly. Thank you

millc5 by L0 Member
  • 8060 Views
  • 3 replies
  • 1 Likes

QoS: only ever matches default-group

I'm obviously missing something simple here, but nothing I've tried makes a difference. Creating a QoS Profile to configure the 8 classes: works great. Creating a series of QoS Policies to classify AppIDs, URLs, users, etc into difference classes: works great. Creating multiple QoS Profiles to limit bandwidth for separate networks: nothing ...

fjwcash by L4 Transporter
  • 10162 Views
  • 9 replies
  • 0 Likes

Globalprotect SAML Auth with Azure and MFA not prompting for MFA after reconnect

Hi All, There are a few topics on this.. I read most of them still unable to resolve this.. we have panorama with managed FWs (10.2.6) and GP portal and GW setup pointing to SAML profile that integrates into Azure and Azure IdP for MFA at first logon, i was prompted for MFA and connected successfully. log off, log back in again and does not pr...

PA_nts by L4 Transporter
  • 12540 Views
  • 5 replies
  • 0 Likes

Prisma global protect

Bonjour, Lorsque l'on configure la gateway global protect sur Panorama, que doit on renseigner dans la partie " IP de la gateway externe" sachant qu'on se connecte à une gateway France North ou France south dans prisma? Pareil que doit on mettre pour l'IP du portail?

Sarou22 by L2 Linker
  • 1682 Views
  • 3 replies
  • 0 Likes

static ip with vlan

HI , I want to configure static ip on panos 9.0.x .very old demo verion on kvmwithout static ip i am able to do very basic task .my isp use pppoe , with username and passwd to login in router .when i add static ip to vlan i dont get internet ,only get dhcp address with dns but no internet ,what suppose to be static route my ip is 45.116.x.x

shrikant by L2 Linker
  • 1839 Views
  • 1 replies
  • 0 Likes

Resolved! Site-to-Site IPSEC issue and MTU

Greetings all! I've run into an interesting issue and I'm hoping someone here may have some previous experiences or maybe something on best practices I'm missing. Basically, we have a site-to-site loopback interface set up and we have several tunnels that utilize this and each connects to its own security zone. So far, this has all been working...

jsalmans by L4 Transporter
  • 35129 Views
  • 7 replies
  • 0 Likes

add TWISTLOCK_CONSOLE env variable to twistcli

i am not sure if this is the right place to suggest this, but i think it will be really handy to have such an env variable i can set up in my zsh profile file (for example), and not having to write `--address $TWISTLOCK_CONSOLE` every time. similarly to how the cli handles `TWISTLOCK_USER` and `TWISTLOCK_PASSWORD`.

NGal by L0 Member
  • 1009 Views
  • 1 replies
  • 0 Likes

PA-440 cannot resolve domain names to ipv4 addresses on CLI

Hello all, Do you how to configure resolve domain to ipv4 address on CLI PA-440? I have set the setup->service-> primary DNS server, and all interface ipv6 are disable. But I ping a domain name on CLI, the resolved address returned is the ipv6 address, not ipv4.

Season_0-1720023654915.png
C.Season by L0 Member
  • 1636 Views
  • 2 replies
  • 0 Likes

RabbitMQ App-ID Misidentified

We have a Security Policy Rule with Application rabbitmq, and Service is application-default. In the same Security Policy Rule, we allowed the dependant applications amqp and SSL. When we test traffic, in the Traffic log, we see it matching the zones and interfaces and IP addresses as we expect, but the rabbitmq application is identified as web-...

  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels