General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Increase paste buffer on PAN (or other import methods)

I am attempting to paste a large number of cli commands from a config converted from another vendor. When I paste via SecureCRT or Putty the commands begin to truncate after around line 20, depending on the length of each line. This is limited to PANOS and not any other devices, so I am assuming it is related to a buffer in PAN. Does anybody kno...

satatic NAT with multiple server

Hi Friend,Need some suggestion, I have one ISP. i dont want to expose my gateway Ip, problem is that i dont want Dynamic IP And Port based NAT, i want source static NAT and i have multiple server. i want source static nat for all server. please help to resolve this issue.RegardsSatish

Satish by L4 Transporter
  • 3705 Views
  • 6 replies
  • 0 Likes

Resolved! Help setting up a custom report using AD group membership as criteria

Hello,I am trying to setup a custom report on Palo. I've tried looking through the canned reports and have tried using the custom report, but I'm not getting the results I want.I want to know how to create a report that can tell me if any member of our student group went to a specific website. In my example, I am trying to find out if any stud...

dannon by L3 Networker
  • 2758 Views
  • 1 replies
  • 0 Likes

PHP vulnerability CVE-2014-3710

Hi, In relation to this vulnerability: CVE-2014-3710. Does anyone know if PA have some signature (Threat) that can stop this?http://php.net/ChangeLog-5.phpany help will be appreciatedRegards,dicu

SOC_CSG by L4 Transporter
  • 3134 Views
  • 2 replies
  • 0 Likes

Global Protect HTTPS weakness - Help!

Hi,I would really like an answer to this considering this is supposed to be a security product in the first place and I see several people have already asked the question.We have just had a security audit completed by a third party, they highlighted 2 issues with the address that our global protect portal and gateway reside on.SSL server accepts...

tezza by L2 Linker
  • 7904 Views
  • 8 replies
  • 0 Likes

LSVPN configuration Question

In order to register with the LSVPN, each satellite must establish an SSL/TLS connection with the portal. Afterestablishing the connection, the portal authenticates the satellite device to ensure that is authorized to join theLSVPN..Just want to understand what exactly packet exchange they do when satellite office authenticates with portal and g...

Resolved! Global Protect before login

This may have been posted before but I am not finding the answer with my searches. I have a single Global Protect Gateway setup with a split tunnel configuration. I found a tech note for how to setup both a split and full tunnel on the same gateway but I was wondering if we could force the client computer to connect prior to the windows login ...

GlobalProtect Welcome Page for network links

I have been testing out using the Welcome page for the Global Protect client as a landing page for network links. The old appliance had a user friendly set of links for the average user. Right now the basic web links for email or www pages work fine. I have two types of links that don't seem to work though. Any ideas?Code:<a href="file:/...

Resolved! SNMP notifications - some missing?

I have enabled SNMP notifications on threats greater than or equal to severity "medium". Under monitor > threats I am seeing my alerts, but I only receive (via SNMP) some of the threats that shows up on the PA interface. Here is an example:I am only receiving SNMP alarms on the "SCAN: Host Sweeps", but not the spyware or the virus.Is this bec...

mcocat by Not applicable
  • 4544 Views
  • 5 replies
  • 0 Likes

Log Question - Key Exchange

We randomly seem to get some alerts that say:SYSTEM ALERT : high : error: Key exchange failed in SSH handshake - DH key I'm new to Palo Alto firewalls and was just curious if this is something that can be ignored? Was thinking that this might be the result of just some networking issue this to fail and generate this alert.

Resolved! Management profile issue

Hi Friends,please suggest, i have create a management profile (ping,ssh,https ) and apply e1/1 (static ip) but i am not able to ping and web access.Regards Satish

Satish by L4 Transporter
  • 8260 Views
  • 12 replies
  • 0 Likes

Global protect with AD integrated issue

Hi Friends,How are you. i hope you are doing well. i need one suggestion from you guys... One of the our customer using Global Protect Remote VPN with PACluster Gateway. they have integrated AD with PA deviceand GP users connecting through AD credential and now lots user credential needto change. So will itimpact when GP client connect with PA ...

Satish by L4 Transporter
  • 3069 Views
  • 3 replies
  • 0 Likes

Are there PA-7050 operation ressources?

Hi,I would like to know, whether there are already special resources for chassis operation? There seem to be separate logs for the cards. These special things seem not to be covered yet neither by the CLI Reference Guide nor by the Hardware Reference Guide. Questions are- Logfiles for cards- Power-Supplies- Chassis-Boot-Problems - Troubleshootin...

Unibw by L2 Linker
  • 2237 Views
  • 1 replies
  • 0 Likes
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels