General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2917 Views
  • 2 replies
  • 14 Likes

Diffrent global protect client configuration

Hey

we have a setup that the client have 3 diffrent type of users connecting with global protect, and all need different configuration

as i see it the only way is to configure 3 different portal for each user type

am i right?    

minow by L4 Transporter
  • 2571 Views
  • 4 replies
  • 0 Likes

Non logging issue

OK a little background first I'm running 4.1 on a 5050 pair in A/P.  I have a server that is trying to do 80 and 443 out to a specific address and we have some logging wierdness going on.  If we don't have a rule in place allowing the traffic it will

...

Brinkman by Not applicable
  • 7201 Views
  • 31 replies
  • 0 Likes

Resolved! OCSP service route?

Question: What service route does the PA take for his OCSP requests?

Since we can not choose anything under the service routes, I suppose it will use the management as default...

Is there any way to change this to some other interface?

Linus

mr.linus by L4 Transporter
  • 5280 Views
  • 8 replies
  • 0 Likes

connectivity issue when firewall HA failover

Did anyone encounter such issue?

We noticed that whenever the firewall triggered a failover (FW1 to FW2).

external services seem to be disrupted.

eg1 :Gomes monitoring informed of connection/performance issues (though we test from some countries to be

...

ateo by Not applicable
  • 2725 Views
  • 5 replies
  • 0 Likes

SSH2 Login Attempt - ID 31914

Name:SSH2 Login AttemptID:31914Severity:Description:This alert indicates a login attempt against the target SSH server. If there are too many login attempts, then it may means an attack is try to brute-force user name and password.

I don't know who wr

...

rroberts by Not applicable
  • 7078 Views
  • 2 replies
  • 0 Likes

Resolved! AD Policy

In Active Directory, we have a policy that requires all users to change their password every 90 days.. we have it configured to prompt within the last 15 days of expiring.. this is not happening for Global Protect users..the user gets stuck in a loop

...

rrau by L3 Networker
  • 2499 Views
  • 6 replies
  • 0 Likes

connection interrupt

Hi,

An internal application is used for databese.It's default port is 5520

when we saw this behaviour we wrote an application override rule for that tcp port and named a new application.

after that we saw issue behaviour not changed(user is disconnectet

...

panos by L6 Presenter
  • 1366 Views
  • 1 replies
  • 0 Likes

Destination NAT question

In this document is described how the NAT function at the Palo Alto.

https://live.paloaltonetworks.com/docs/DOC-1517

Has anything changed in the 5, in contrast to 4.1er?

So far, the destination NAT zone was generally on the incoming interface as the sou

...

register by L1 Bithead
  • 1647 Views
  • 2 replies
  • 0 Likes

Resolved! Revert Panos

Hi,

when we revert to 5.0.5 from 5.1.0 using maintenance mode (Panorama)

will we lost all logs ? and config ?

Thanks.

panos by L6 Presenter
  • 1747 Views
  • 2 replies
  • 0 Likes

GlobalProtect clients logged as PA MGMT

Looking through my logs today and I noticed that connections initiated by clients using GlobalProtect are being logged as sourcing from the PA management interface. Is this expected/intended behavior?  Shouldn't the log show the clients IP address?

Resolved! Data pattern

HI all

I tried to created a data pattern with a regex like in the pan 205 training course.

(Classified)|(CLASSIFIED) and this seams to be not working.

and the workaround that I found is to create in the data pattern 2 pattern

first : Classified

second :

...

Gregoux by L4 Transporter
  • 2053 Views
  • 2 replies
  • 0 Likes
  • 24022 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors