General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 348 Views
  • 0 replies
  • 2 Likes

Resolved! Failed to email PDF reports

Hi,

Sometimes scheduled  PDF reports fails to send. I get the message: "failed to get ip for host." It is email server problem or something wrong with configuration? Is any possibility to send scheduled PDF reports on another time or repeat sending?

Interface by L3 Networker
  • 3072 Views
  • 3 replies
  • 0 Likes

IPSEC VPN through PAN comes up but does not pass traffic

What needs to be enabled to allow a VPN that once worked to be allowed through a 3020. I had a Juniper to Juniper IPSEC VPN that worked before the 3020 was placed between the 2 junipers. What needs to be allowed to make sure that the traffic passes.T

...

tuckert by L0 Member
  • 2170 Views
  • 2 replies
  • 0 Likes

Resolved! Palo Alto Dictionary file for Steel Belted Radius

Hi,

We are using Steel Belted Radius Enterprise Edition v6.1.6 for authentication on all the network devices.

We have few PA3020 and PA500. Now we would like to authenticate these firewalls via the same Steel Belted Radius Server.

I am unable to locate

...

DCN by Not applicable
  • 3039 Views
  • 3 replies
  • 0 Likes

SSL decryption fails

We are testing SSL decryption on our PA at the moment. We have found a site that could not be decrypted: https://posteo.de/

Has anyone of you an idea why the decryption fails for that site?

And how could I troubleshoot such problems? Because the normal

...

Resolved! Active Directory help

Hi All,

We received our first pan 3020 Monday and I have been trying to learn about the product in order to setup for production. I'm making good progress so far, but I have run into an issue importing AD users. I setup group mapping and I'm able to s

...

jbo by L0 Member
  • 4035 Views
  • 8 replies
  • 0 Likes

Resolved! Dynamic Block List Site

Is there a list of known bad IP addresses? I would like to include a dynamic block list in my policy but I don't have a list of known bad IP addresses. Does Palo Alto have a canned list of IPs that I can reference to insert into my policy?

das by Not applicable
  • 5928 Views
  • 6 replies
  • 0 Likes

Ipsec vpn from MS ISA 2006 to PaloAlto

Hello,

A third party has a isa 2006 server which they use for ipsec vpn. We do not seem to be able to create an ipsec site 2 site vpn. Can this be done? If so, any howto's,

mikeh by Not applicable
  • 2108 Views
  • 1 replies
  • 0 Likes

PAN-OS

Hi Guys ,

Have a question , which PAN-OS is the most stable ??

Regards,

Bryan

How to Interpret Traffic Monitor Output

I have traffic going over a VPN tunnel. There is a rule alllowing the traffic and routing isn't a problem.

A source host isn't connecting to a host across the tunnel. In monitor I'm seeing entries that say the packet is allowed but in the application

...

Weese by Not applicable
  • 2072 Views
  • 2 replies
  • 0 Likes

Resolved! Portal Gateway priority clarification request

We are having West Coast clients connect to our "backup" east coast gateway, which is a small sales office, and thus, cannot be "Manual Only".  We would like to adjust the gateway priorities to help keep all clients on West Coast connecting to the ma

...

VBS/Virus.invadesys.(253879) - Potential False Positive?

Hi,

Recently, on some of our clients we have been seeing the same threat / virus appear. The name is VBS/Virus.invadesys. and the ID is 253879.

Some interesting things to note...

  1. The file-name is ALWAYS a bookmark file ending in .url
  2. All of the files sou
...

dciccone by Not applicable
  • 5309 Views
  • 11 replies
  • 0 Likes

4050 HA Upgrade Question

Anyone with a HA 4050 Cluster, can you please tell me the pros/cons of code 5.0.3 and 5.0.6?  I am looking to upgrade my HA pair and have noticed CPU imbalance issues, high management plane issues with 5.0.1 on my 500, 2050's.  I want to upgrade but

...

  • 23673 Posts
  • 108 Subscriptions
Top Liked Authors
Labels