General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1656 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect Client Startup

After installing the Global Protect Client on our Windows 7 laptops, every time our users start their machines once they login to our network on the LAN the Global Protect Client pops up and wants to connect. Is there a way to supress that popup when

...

Resolved! VPN SSL traffic

We have a SSL VPN setup through the Global Protect Gateway. The SSL-VPN tunnel is in its own zone and I have an any - any rule for this zone to my trusted zone. I am able to pass traffic to one interface in a trusted zone but I am not able to pass tr

...

God by Not applicable
  • 4872 Views
  • 9 replies
  • 0 Likes

SSL Inbound decryption woes

Hi there,

we just configured our first SSL Inbound decryption, but we have some trouble and need help troubleshooting it.

Very simple setup:

Webserver in DMZ zone

Firewall policy: from:untrust to:dmz; src:any; dst:webserver; app:ssl,web-browsing; servic

...

Loss of connectivity when trasfering log to syslog server

Hello Everybody!

Our PAN firewallls send their log to a central syslog server; in case there is a gap in the connectivity (e.g. satellite link down) what happens to the corresponding log entries?

Shall the remote firewall store them till the connection

...

Bucche by L2 Linker
  • 5080 Views
  • 7 replies
  • 0 Likes

Resolved! Vulnerability Protection Threat level

I have been trying to figure out if there is away to adjust the Threat level of an event under the Vulnerability Protect.

For Example I have set certain vulnerabilities to drop packages but I want to change the threat of it so its no longer a high thr

...

murphyj by L2 Linker
  • 3005 Views
  • 3 replies
  • 0 Likes

LDAP 389 Group Mapping

I am attempting to configure Global Protect to authenticate with our LDAP server. We are an all Linux shop and we are using LDAP 389, which is very similar to OpenLDAP (this is what I was told anyway, I am not much a server guy and don't manage this

...

Resolved! session table

Hi,

is it possible to use a PAloalto firewall not to keep sessions and works like a non stateful Access Control device.

Thanks.

panos by L6 Presenter
  • 3542 Views
  • 5 replies
  • 0 Likes

Resolved! Multi AD groups for Global Protect access

Hi All,

I have a Global Protect access question for group. I have given access rights to a VPN user group and assigned the AD membership that almost all of our staff is a member of to it and its been working well. Now I need to add a second AD securit

...

Resolved! non-syn vsys

Hi,

is there an option to Set the vsys (not Firewall or zone) to Reject non-Syn First Packet?

panos by L6 Presenter
  • 1820 Views
  • 1 replies
  • 0 Likes

logged in user are sent to captive portal

hey

we have a situation the loggen in users are sent to the captive portal. event a few minutes or an hour after they have logged in to the conuter.

1) when this is happaning then the ip-user mapping shows no user for the IP

2) we cant simulate this beh

...

minow by L4 Transporter
  • 4969 Views
  • 11 replies
  • 0 Likes

Resolved! commit is failing

unable to commit please help in troubleshooting

PA version: 5.0.3

thanks

admin@PA# commit force

..........................

Management server failed to send phase 1 to client authd

Commit failed

[edit]

admin@PA# run tail mp-log authd.log

Jul 11 17:33:53 pan_au

...

minow by L4 Transporter
  • 6079 Views
  • 5 replies
  • 0 Likes

Resolved! DHCP server runs out of ip pool interface Error

We are using a PA-200 for our test network and have DHCP configured on the FW.  We have test devices that generate a new MAC address everytime it reboots.. so our scope is out of address.  Is there a way to clear all current IP's and start fresh?

rrau by L3 Networker
  • 3944 Views
  • 2 replies
  • 0 Likes

User-ID Agent Logging

We're thinking about enabling user-id agent and captive portal to more closely monitor and segment our user permissions. I'd like to know, however, if there is a document somewhere that details what information is captured and logged regarding userna

...

Resolved! Traffic summary databese

Hi,

When there is no log related to a date range we can take a report for tht range from traffic summary but not traffic(detailed).it is normal for detailed since there is no log.So how can we take report summary for that range.

Why is that ?

panos by L6 Presenter
  • 3041 Views
  • 1 replies
  • 0 Likes
  • 24215 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels