General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Which weak cipher suites for SSL/TLS to delete

Hi All,

I recently had a pen test return the following results:

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)   ECDH secp256r1 (eq. 3072 bits RSA)   FS256TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f)   ECDH secp256r1 (eq. 3072 bits RSA)   FS128TLS_...

LSVPN Satellite fails to authenticate

Hello

I'm struggling to setup a (not so) large scale VPN solution with one PA-820 ha pair and three PA-410 satellites. I'm using local CA in PA820. At some point I had some success - portal connection succeeded and certificates were issued to satelli

...

GeorgeAPH_0-1684838429150.png

Strata , Prisma & Cortex || Difference

Hi, what is the difference b/w Strata, Prisma & cortex, as Strata is only used for Enterprise solution? Prisma for cloud ? in official documentation Strata have also cloud solution then what's the function of Prisma? Strata included specific mod...

Khalid by L0 Member
  • 3075 Views
  • 3 replies
  • 0 Likes

PANOS Integrated UserID with WINRM

Hello,

 

I am trying to configure PANOS(10.1.8) Integrated UserID with Wndows AD 2016 (with Kerberos).

I am getting  "Access Denied" status under User Mapping --Server Monitoring 

I have validated that user is part of below security groups on AD 

  • Dis
...

Resolved! session end reason resources-unavailable for all traffic

Hi,Guys

The customer's network recently experienced an outage, and  found all the session  end reason  was resources-unavailable ;

I exec the comand " debug dataplane pool statistics" and found there is a parameter in the software pool called Regex Res

...

220 activation

It was discovered recently that we have a 220 in use that the Support contract was never activated. And now because the 220 is End of Sale we are unable to purchase a new Support contract. Is there a way to get this unit activated?

 

We have a lot of

...

Reason for Sudden Reboot of PA-820

1. Need to get the confirmation on the reason for the sudden reboot of the PA-820 device which is in High-Availability state.

2. Only the Primary Unit has faced sudden Reboot but Secondary did not, Checked for the power adapter of the Primary unit bu

...

Purushotham_0-1684750533621.png

Palo Alto and Menlo Integration

Hi all,

 

Does anybody known how to integrate Palo Alto with Menlo Security Solution ?

The goal is to transparently redirect HTTP/HTTPS traffic to Menlo appliance for specific URL Categories...

 

Any idea ??

 

Regards,

 

HA 

 

Maximum Access Domains Per Admin Panorama

Hi guys,

 

What is the maximum number of access domains you can configure per admin? I tried adding a 26th access domain to an admin, but was presented with the following error.

 

admin-bar@panorama01# set mgt-config users rus permissions role-based cust

...

Anyone running PAN-OS 11.0.1 on a PA-440?

I am for that matter because I need de PPPoE feature on a sub-interface.

But I have noticed that one of the LEDs on the management interface is not working.

Could this be a software issue?

 

Regards,

Han.

Han.Valk by L2 Linker
  • 1001 Views
  • 2 replies
  • 0 Likes

Pan-OS CLI Keyword Highlighting in SecureCRT

I use SecureCRT to manage SSH connections to Pan-OS CLIs on our NGFWs, and this software has the ability to highlight keywords, including regex(s). However, after a couple hours of Google-fu, I found user-made Cisco CLI templates but cannot find any

...

Resolved! Delete all Address Objects

Hello,

I have >600 Address objects on a Lab firewall and I am looing for a way to delete them all.  The web interface does not contain a select all tick box for individual address objects (mind-blowing.. why not??)...  Anyone know of a CLI command tha

...

  • 24191 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels