This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 218 Views
  • 0 replies
  • 0 Likes

Resolved! Certificates troubleshooting

Hi! we are trying to implement a SSL VPN connection through Global Protect using certificates from our own CA. We imported the root, intermediate and server certificate, but after configuring the portal we see an warning after commit: " cannot find c

...

Diffrent global protect client configuration

Hey

we have a setup that the client have 3 diffrent type of users connecting with global protect, and all need different configuration

as i see it the only way is to configure 3 different portal for each user type

am i right?    

minow by L4 Transporter
  • 2845 Views
  • 4 replies
  • 0 Likes

Non logging issue

OK a little background first I'm running 4.1 on a 5050 pair in A/P.  I have a server that is trying to do 80 and 443 out to a specific address and we have some logging wierdness going on.  If we don't have a rule in place allowing the traffic it will

...

Brinkman by Not applicable
  • 8748 Views
  • 31 replies
  • 0 Likes

Resolved! OCSP service route?

Question: What service route does the PA take for his OCSP requests?

Since we can not choose anything under the service routes, I suppose it will use the management as default...

Is there any way to change this to some other interface?

Linus

mr.linus by L4 Transporter
  • 6178 Views
  • 8 replies
  • 0 Likes

connectivity issue when firewall HA failover

Did anyone encounter such issue?

We noticed that whenever the firewall triggered a failover (FW1 to FW2).

external services seem to be disrupted.

eg1 :Gomes monitoring informed of connection/performance issues (though we test from some countries to be

...

ateo by Not applicable
  • 3174 Views
  • 5 replies
  • 0 Likes

SSH2 Login Attempt - ID 31914

Name:SSH2 Login AttemptID:31914Severity:Description:This alert indicates a login attempt against the target SSH server. If there are too many login attempts, then it may means an attack is try to brute-force user name and password.

I don't know who wr

...

rroberts by Not applicable
  • 8082 Views
  • 2 replies
  • 0 Likes

Resolved! AD Policy

In Active Directory, we have a policy that requires all users to change their password every 90 days.. we have it configured to prompt within the last 15 days of expiring.. this is not happening for Global Protect users..the user gets stuck in a loop

...

rrau by L3 Networker
  • 2881 Views
  • 6 replies
  • 0 Likes

connection interrupt

Hi,

An internal application is used for databese.It's default port is 5520

when we saw this behaviour we wrote an application override rule for that tcp port and named a new application.

after that we saw issue behaviour not changed(user is disconnectet

...

panos by L6 Presenter
  • 1507 Views
  • 1 replies
  • 0 Likes

Destination NAT question

In this document is described how the NAT function at the Palo Alto.

https://live.paloaltonetworks.com/docs/DOC-1517

Has anything changed in the 5, in contrast to 4.1er?

So far, the destination NAT zone was generally on the incoming interface as the sou

...

register by L1 Bithead
  • 1847 Views
  • 2 replies
  • 0 Likes

Resolved! Revert Panos

Hi,

when we revert to 5.0.5 from 5.1.0 using maintenance mode (Panorama)

will we lost all logs ? and config ?

Thanks.

panos by L6 Presenter
  • 1984 Views
  • 2 replies
  • 0 Likes

GlobalProtect clients logged as PA MGMT

Looking through my logs today and I noticed that connections initiated by clients using GlobalProtect are being logged as sourcing from the PA management interface. Is this expected/intended behavior?  Shouldn't the log show the clients IP address?

  • 23615 Posts
  • 107 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks