General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2884 Views
  • 2 replies
  • 14 Likes

SSL Decryption Certificate

For SSL Decryption does the cert on the PALO need to be issued from the same enterprise cert chain as the workstations, or does the cert on the workstation have to match the cert on the PALO exactly?  We have about 2000 workstations that have been is

...

markk96 by L3 Networker
  • 1398 Views
  • 1 replies
  • 0 Likes

Panorama without direct internet connection

Hi,

I have a setup where panorama is not allowed direct internet connection, therefore I would like a setup where a server in a DMZ sone gets the updates from Paloaltonetworks.com and my panorama installation gets the update from that server. Has anyb

...

kristian by L3 Networker
  • 1792 Views
  • 1 replies
  • 0 Likes

SSL Decryption Certificate

For SSL Decryption does the cert on the PALO need to be issued from the same enterprise cert chain as the workstations, or does the cert on the workstation have to match the cert on the PALO exactly?  We have about 2000 workstations that have been is

...

markk96 by L3 Networker
  • 1261 Views
  • 1 replies
  • 0 Likes

Encryption protocol

Is it possible to disable SSLv3 and use TLSv1.2, TLSv1.1 or updated TLSv1.0encryption protocols on a PA 3020?

infotech by L4 Transporter
  • 1068 Views
  • 0 replies
  • 0 Likes

captive portal comfort page issue

Hi All,

Captive portal comfort page configured with customized logo.

This logo is displaying in the top of User Identification portal when using firefox

but this logo not displaying (logo not loaded.right click->show picture also useless in ie8) when us

...

Javith by L3 Networker
  • 1232 Views
  • 0 replies
  • 0 Likes

Resolved! issue with SSL decrypt-forward proxy

Customer Network configured with SSL decrypt-forward proxy. Now they can't able to browse more sites (eg:birdres.com, sap.snn,etc).

They were not satisfied with exclude ssl decrypt. (due to more no.of sites in exclude list). Is there any other way?

Th

...

Javith by L3 Networker
  • 3314 Views
  • 8 replies
  • 0 Likes

Application Groups "service" in security policy

I have the following scenario I came across and just curious if this is expected behavior. It is recommended when "whitelisting" and application to use the application-default service (so it only works on its default port), or if you are "blacklistin

...

froggyj by Not applicable
  • 2727 Views
  • 2 replies
  • 0 Likes

Resolved! ports unknown allowed

Hi all,

We have an application group that specifies the applications to allow from untrust to our DMZ. Mostly its just web browsing, ssl, pop and smtp. We are not allowing ms smb port 445 or Port 135 msrpc.

Our recent PCI security scans are telling us

...

how to see posted data sent by attackers

Hi..Is there a way to see content of posted data by attacker.For example content of Generic HTTP Cross Site Scripting Attempt or sql injection.Palo alto shows only the name of attack and some information about them

ikaratas by Not applicable
  • 2327 Views
  • 3 replies
  • 0 Likes
  • 24016 Posts
  • 99 Subscriptions
Top Solution Authors