General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Captive portal - time out

Hello Where I can change the time when a user enters for captive portal? Caduceus do not want the user session. I have a PA500 Software version 5.0.4 Thank you very much.

PA to Cisco 5505 VPN tunnel

When trying to configure a site to site VPN tunnel from a PA 3020 to a Cisco 5505 firewal I am getting th following messages on the Cisco firewallreceived encrypted packet with no matching sa droppingall ipsec proposals found unacceptable

infotech by L4 Transporter
  • 12561 Views
  • 22 replies
  • 0 Likes

VPN Tunnel Monitoring

What is generally used for a tunnel interface IP? Can it be arbitrary or must it be an IP that is part of the tunnel? I've read the docs on the site, but they don't say all that much about the interface IP itself.Thanks!

iguarino by L0 Member
  • 3642 Views
  • 3 replies
  • 0 Likes

Resolved! Need help in CLI command

HelloI have to make some order on my PAN device.I'm looking for CLI command:- that will show me all addresses and groups defined on my device- that will show me all services and groups defined on my device- how to list aplications from one policy and put the list of aplication to aplication groupI hope that for You it is easy With regardsSlawek

_slv_ by L4 Transporter
  • 4714 Views
  • 5 replies
  • 0 Likes

Not packet returned via subinterface

Lan2(trust zone-172.16.10.0/24)-> internal - switch from trunk-> (eth1/1-172.16.10.100)PAN FW(eth1/2-192.168.1.104/24)->(192.168.1.1/24) DSL modem(untrust)Lan2(trust zone-172.16.20.0/24)->connected thro. mpls -> (eth1/1.10-172.16.20.100)My vr config: Destination:0.0.0.0/0, Inte...

Javith by L3 Networker
  • 2447 Views
  • 3 replies
  • 0 Likes

Email containing detailed information when a download takes place

Hi everyone, I've read the user guide and searched around here but I'm not able to find an easy step by step guide. I'd like to setup/receive an email from our PAN whenever a download takes place. We currently receive other threat alert emails etc. but not these. I'm thinking it has something to do with Data Logs as the Dashboard provides a visu...

Crash28 by L1 Bithead
  • 2430 Views
  • 1 replies
  • 0 Likes

RSA Risk Based Authentication

Hi all,Recently I've been doing some research to secure our corporate vpn access with RSA SecureID or something equivalent. In my discussions with RSA, it seems they have a token-less risked based authentication engine that does not require users to carry around the RSA tokens. RSA is claiming that currently Palo Alto does not support this, ho...

Resolved! Panorama candidate config rollback

Hi,I prepared some rule changes within Panorama but did not commit them yet. I'd like to roll those back to the running configuration. How would I be able to do that?Thanks in advance.

przyboro by L1 Bithead
  • 4520 Views
  • 4 replies
  • 0 Likes

Global Protect unusual login message

Hi,My client found log message and shows he log in successfully, but actually he did not.He’s running “on-demand” mode and he confirmed it’s not connected.The only thing he did is turned on the laptop, nothing else.I knew the Global Protect will be start up automatically while system is up, but I don’t know it’s possible it will login automatica...

mikepeng by L0 Member
  • 3297 Views
  • 2 replies
  • 0 Likes

Meterpreter not detected?

Hi,I have a PA3020 installed and operational in my enviroment.I have a vulnerability profile (using "default" actions for detected threats) created and applied to a security policy that covers all zones.I decided to do some testing and simulate an attack using metasploit.Based on my results, I have a couple of questions:I "compromised" several w...

charger by L2 Linker
  • 5558 Views
  • 5 replies
  • 0 Likes

PAN-VM issues, support license not working

Good DayThe support license key seems to be invalid. It's weird because that is the license key I got when I registered it. But in the virtualization guide, it mentions that you have to apply acapacity auth-code, even on the support site where I registered there is no capacity auth-code only the Threat Prevention and Support codes.ThanksDana

  • 24404 Posts
  • 123 Subscriptions
Top Solution Authors
Labels