General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! GP-Prelogon not automatically connecting

Hey everyone, like title suggests I am having trouble with pre-logon automatically logging in. Everything works perfect except this. When you boot up the PC it will never auto connect but if I click connect it will work without issue and never fail. You can then log into the PC and it will move you off the pre-logon gateway over to what I have d...

Resolved! Temporarily disable SSL decryption

Hi I was wondering if anybody knew if the temporary disable SSL decryption is actually broken or it is my firewall, I needed to switch it off as I was having issues getting to sso.paloaltonetworks.com (which oddly is not covered by exclusion list) and found that even after running the command set system setting ssl-decrypt skip-ssl-decrypt yes...

Hide Global Protect redirection

Hello team We have already hidden the global protect pages so that our users can only access through the client, however, we have detected that when we type the ULR or IP in a browser there is an automatic redirect that adds /global-protect/login.esp and we do not want this to be so, because we do not want that from the outside can be seen that ...

Alpalo by L4 Transporter
  • 3739 Views
  • 6 replies
  • 0 Likes

Hide Global Protect redirection

Hello team We have already hidden the global protect pages so that our users can only access through the client, however, we have detected that when we type the ULR or IP in a browser there is an automatic redirect that adds /global-protect/login.esp and we do not want this to be so, because we do not want that from the outside can be seen that ...

Alpalo by L4 Transporter
  • 1344 Views
  • 1 replies
  • 0 Likes

Resolved! Remove Device Certificate

We would like to remove the device certificate from a couple of our firewalls. We don't use or need the device certificates at this time and would prefer them not be installed. I tried to do a factory reset and the certificate automatically downloaded and installed itself.

jwill2 by L2 Linker
  • 7887 Views
  • 6 replies
  • 0 Likes

For assessment retake

i want to retake my palo alto cyber security final assessment because of some internet issue i dint took the assessment properly so kindly help me

MTU size clarification at Interface and Sub-Interface level

Hi All, If we set mtu value as 9192 in interface and 9072 as sub-interface, which one the sub interface choose. If it will choose 9072, would that mean 9072 size packet can be sent. Similarly, If we set mtu value as 9192 in interface and kept the sub interface blank, what mtu will be choosen.

Sujanya by L3 Networker
  • 8869 Views
  • 2 replies
  • 0 Likes

Does anyone have any experiences or "gotchas" they'd like to share when they've implemented Riverbed Steelhead appliances behind PA firewalls?

I see that there's a 'riverbed-rios' app listed in Applipedia, which gives me some hope.Specifically what I am concerned about is discussed here (with configuration examples for PIX/ASAs):http://www.dslreports.com/faq/16494The Riverbed appliances we have take advantage of TCP option 76 for autodiscovering other Steelhead appliances that are in-p...

Traffic logs doesnot have a corresponding URL log

I am trying to perform some forensics into a user activty but Palo Alto logs are not really helping me a lot. I mean, I see a traffic for some IPs but when I click the maginifying glass icon, I see the category in it but not the actual URl. I have checked the URL filtering profile and it is set to alert.has anyone observed this?

Resolved! Different Temperature Sensors

I need to know what is the difference between those three sensors please,S1 CPU Die temperature sensor S1 U9 temperature sensorS1 U66 temperature sensor After adding the temperature reading of PA device to PRTG the above indicators were shown and I need to know the indication of each one.

Waly by L1 Bithead
  • 2518 Views
  • 1 replies
  • 0 Likes

Resolved! Unable to Authenticate to GP using SMAL

On PA 8.1.19 we have configured GP portal and Gateway for SAML authentic in Azure.We have imported the SAML Metadata XML into SAML identity provider in PA.Authentication FailedPlease contact the administrator for further assistanceError code: -1When I go to GP. url. I get authentic on my phone and I approve it then I get this error on browser. P...

MP18 by Cyber Elite
  • 25859 Views
  • 14 replies
  • 0 Likes

Resolved! Cluster config question

Hi to all, I have a question regarding the cluster config tab (i have attached a picture). There we are adding the peers only, or we have to add also the same device I am a configuring. For example I have 3 devices, That table of devices should be three (3) or only the peers which are two(2) at every cluster member.

kvagenas by L1 Bithead
  • 2306 Views
  • 2 replies
  • 0 Likes

Resolved! Unable to Upgrade from 11.1.3 to 11.1.13

Hi, I am having a problem to upgrde, with the objective of upgrading my PA-460 standalone from 10.1.13 to 11.2.0. I performed the following: Download 10.2.0 install and reboot; then maintenance release then the last 10.29 -h? release and reboot. Download 11.0.0 install and reboot then maintenance release 11.0.x (last ) and reboot. ...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels