General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 928 Views
  • 1 replies
  • 8 Likes

Resolved! Configuring CRLs

All,
I am using a microsoft CA to issue machine certificates for global protect authentication.  All is working, but the downloading of my internal CRL.  Is there something I need to configure besides checking the "User CRL" option in my certificate p

...

dan731028 by L3 Networker
  • 3090 Views
  • 1 replies
  • 0 Likes

Resolved! Prevent Scan

HI,


we have detected that we are suffering a scan of all servers in our DMZ, the IP source is 151.236.14.140, on port 443.


How can we avoid this kind of attack or prevent it??


Thanks

HTTP Report

Hi,

I want to create a report based on the predifined canned report HTTP Applications.  I have tried loading it as a template and it doesn't show up in the list of templates.  I have also found it in the CLI as top-http-applications the output of whic

...

CHammock by L2 Linker
  • 1339 Views
  • 1 replies
  • 0 Likes

Resolved! smtp/pop3 over SSL - how to configure security rules?

Hi

I moved my email serwer from untrust to DMZ. Everything almost is working fine, almost ...

This server has ftp and webmail function too, so my security rules looks:

I checked on aplipedia for aplication smtp and pop3. Accroding to aplipedia smtp uses

...

_slv_ by L4 Transporter
  • 9946 Views
  • 7 replies
  • 0 Likes

Torrent

Hello Guys,

Have anyone of you noticed something regarding torrent(bittorrent, transmission..etc..)?

We received a report that a torrent app which is transmission is able to evade the app detection of Palo Alto NGFW.

I tested it in my lab, I use Bittorr

...

Migrate from ASA 5505 to a PA 3020

Any one know the best what to migrate this configuration from a Cisco ASA 5505 to a PA 3020 here it show run information for the interfaces from the ASA 5505

interface Ethernet0/0

switchport access
vlan 900

!

interface Ethernet0/1

   switchport access
vl

...

infotech by L4 Transporter
  • 1719 Views
  • 4 replies
  • 0 Likes

Problem with chained Cert

Hello

I made a CSR. Got my Cert and did the stuff mentioned in the "how to chained certificate", Copied the intermediate on top of my cert.

but the PA-500 did not accept it. okey i tried it without the intermediate cert text - and it worked. Request is

...

User_333 by L2 Linker
  • 1447 Views
  • 1 replies
  • 0 Likes

Resolved! Youtube safe mode

Hello all,

Yes its youtube again, for a while now youtube has been working fine since we turned on the safety-mode feature and forced students to select safe-mode.

But this week they have been complaining that not all the videos work.

I have looked at t

...

breezer by Not applicable
  • 1793 Views
  • 2 replies
  • 0 Likes

What do WRED drops and Policing drop on qos mean?

Hello

I have made qos configuration.

I have questions when am checking qos.

Look at the following command

show qos interface ethernet1/1 hw-counter

qid   name                 pass bytes       WRED drop   policing drop

------------------------------------

...

Resolved! Captive Portal using client certificates on iOS

Has anyone been able to successfully set up captive portal +Apple iOS devices + client certificates? I have all of this set up but running into a slight issue with iOS devices(works fine with Windows devices).  On the iOS device, when opening the Saf

...

jambulo by L4 Transporter
  • 3593 Views
  • 2 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors