General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Panorama - Restrict Firewall Log Access

Does anyone know if there is a way to create admins in Panorama for specific subdomains AND restrict their access to only the logs for the firewalls in that subdomain? I want to give access to users for only their FW logs and not let them see all of

...

chrisp by L3 Networker
  • 3084 Views
  • 4 replies
  • 0 Likes

Resolved! What is a "large" deployment for User-ID on the firewall?

We have a pair of 5020s and about 4000 users on 4 AD controllers. Throughout the 4.0 and 4.1 series, we have seen the Windows-based UserID Agent drop groups and users, and are interested in seeing if native event log polling from 5.0 might help. Targ

...

rgraves by Not applicable
  • 5035 Views
  • 6 replies
  • 0 Likes

Resolved! Bidirectional Forwarding Detection

Does Palo Alto Firewalls support Bidirectional Forwarding Detection (BFD). Link to RFC http://tools.ietf.org/html/rfc5880

The reason i ask is it is best practice to use this as a OSPF fault detector in lue of reducing the ospf timers.

Global Protect and Android 4.0.4 - problem

Hello

I have working VPN for Windows machines. I need to extend it for Android devices, using client from Android OS.

I'm using login and passwords (not certs) in my VPN config.

I followed by the GlobalProtect-Config-Android-RevB.pdf  - part 3



When I try

...

_slv_ by L4 Transporter
  • 4996 Views
  • 11 replies
  • 0 Likes

User-ID stopped populating mappings - OS 4.0.12

I am running OS 4.0.12 and have an issu with the user-ID / mappings not populating in the logs. 

show user pan-agent statistics:

IPs      Activity Timer(s) Domain          Index

ncmpdcden01      10.250.12.10    5009  vsys1   *connected, ok     989    9

...

Resolved! Global Protect behind a firewall

Hi,

PaloAlto firewall is behind another firewall(Firewall B).

This firewall B's port 443 busy with another app.So we have to use another port

How should we configure Paloalto portal and gateway.

we used port 18000.

Firewall B --- 2.2.2.2 port 18000 Nat to

...

panos by L6 Presenter
  • 6695 Views
  • 10 replies
  • 0 Likes

Commit only a specific set of config changes?

Hi,

Is there any way to commit just a specific set commands to the Palo without committing all changes that are pending? I have an in house written piece of software that is going to make content filtering changes to my Palo's via the XML API. My conc

...

Gareth by L1 Bithead
  • 4648 Views
  • 4 replies
  • 0 Likes

Resolved! Global Protect attack

Hello

Someone could say me, what is the cause of the error?

Palo Alto: Monitor -> System

Receive Time: 08/09 9:22:58
Type: GlobalProtect
Severity: informational
Event: globalprotectportal-auth-fail
Object: Portal_Laptops
Description, GlobalProtect Portal use

...

SOC_CSG by L4 Transporter
  • 3105 Views
  • 3 replies
  • 0 Likes

Blocking an application for all websites except one

I have an Application filter for Streaming Audio and have created a policy to block it. That's going well but I need to allow http-audio which falls under Streaming Audio for one specific site only.

I have created a URL Filtering security profile with

...

eugenep by L3 Networker
  • 7517 Views
  • 10 replies
  • 0 Likes

terminal Agent - session 0 "no need to handle"

hi all,

I've encauntered the issue with terminal agent mapping.

Everything is working fine for normal users using terminals but for local console Administrator it is pain in the a...

It seems that Terminal Agent is skipping this mapping (local console

...

pkonitz by L2 Linker
  • 2698 Views
  • 2 replies
  • 0 Likes
  • 23591 Posts
  • 103 Subscriptions
Top Solution Authors
Top Liked Authors
Labels