General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Tunnel flow

How do you check to see if there is bidrectional flow on a vpn tunnel?

infotech by L4 Transporter
  • 1658 Views
  • 3 replies
  • 0 Likes

question use Syslog Sender and User ID Agent to do User IP Mappings

I used PAN 6.01 and  followed https://live.paloaltonetworks.com/docs/DOC-6727.

I create a filter as following part for my Aerohive device.

event-regex             auth\:

username-regex       username ([a-zA-Z0-9\_]+)

address-regex         ip ([A-F0-9a-...

Bin by L1 Bithead
  • 1747 Views
  • 1 replies
  • 1 Likes

A quick application based policy query

Hi,

I'm trying to better understand application policies and their dependencies and have a question I'm hoping someone can clear up for me. Lets for example say I'm trying to allow users access to an application which has SSH as a dependency. Lets als

...

Resolved! Captive portal leak

Hi everyone,

recently I configured CP but have problem with skype, which running without CP web authentication. I understand that sec policy take in place first and redirect session to CP for authentication (in my case have policy to permit any to any

...

Tician by L3 Networker
  • 2599 Views
  • 4 replies
  • 0 Likes

Report Destination port diferent

Hi,

I have a doubt about this inform. I dont know why in my report depending on the source the detination port appears in the right column or not.

All those connections in this screeshot are in the port 161(SNMP) but only appears if the source ip is 17

...

SOC_CSG by L4 Transporter
  • 1527 Views
  • 1 replies
  • 0 Likes

Can any of the PA firewalls act as an SBC?

Hi all,

I am wondering if it is possible to set up a Palo Alto firewall to act as a Session Border Controller for VoIP.

Any articles or company response regarding this capability would be appreciated.

Thanks!

golubb by Not applicable
  • 2852 Views
  • 1 replies
  • 0 Likes

Captive Portal has stopped working?

5.0.11 - we've had Captive Portal in place for months using a Kerberos authentication profile - nothing has been changed.

All of a sudden people aren't seeing the normal Captive Portal page (with the credential boxes in the middle of the screen) they'

...

HA in VWire and path monitoring

 

We have an environment (HA active passive in VWire mode) in which the PA is sitting directly connected to an SRX FW in HA.

 

What we agreed that both of the PA and the SRX should be:

 

  • Link up on the passive device
  • Disable failover on link down
  • Failove
...

minow by L4 Transporter
  • 2699 Views
  • 1 replies
  • 0 Likes

Resolved! No Source User displayed

Hi

We have just completed an upgrade from PANOS 5.0.3 to 6.0.2.

Everything seems OK with the exception of the GlobalProtect agents (and Shrew VPN) not being allowed onto the network. A successful connection is made by GlobalProtect but you can't connec

...

TDC by L1 Bithead
  • 2650 Views
  • 1 replies
  • 0 Likes

CLI part 2

I have recieve some good information concerning CLI. But ever time I get online with a PA engineer they do a lot more than what is listed in the documentation I have recieved. So I am looking to see if there is a more comprehensive guid on troublesho

...

infotech by L4 Transporter
  • 7184 Views
  • 6 replies
  • 0 Likes

Avoid scanning threat vulnerabilities

Hello

I have in my firewall logs events detected as a threat of this IP:

Source IP:    84.88.91.1    Spain

From Zone: Untrust

to my web server:

Destination IP:    195.77.XX.XX

Destination Port:    80

To Zone: DMZ

Multiple Vulnerabilities Types Targeting a Si

...

SOC_CSG by L4 Transporter
  • 6868 Views
  • 2 replies
  • 0 Likes

global protect and OTP

hey

our GP environment has PA device in cluster running both portal and gateway,

users authenticate to the portal using OTP and GW is also configured for OTP

we can see that users are authenticating and using GP well but when they put the computer into

...

minow by L4 Transporter
  • 2918 Views
  • 4 replies
  • 0 Likes

Resolved! PAN FW to DSL Modem

PC(trust zone-172.16.10.98/24)->(eth1/1-172.16.10.100)PAN FW(eth1/2-192.168.1.104/24)->(192.168.1.1/24) DSL modem(untrust)

My vr config: Destination:0.0.0.0/0, Interface:eth1/1, Next hop:192.168.1.1/24

my security policy: trust to untrust -any any

my

...

Javith by L3 Networker
  • 2311 Views
  • 3 replies
  • 0 Likes
  • 24185 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels