General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 327 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3683 Views
  • 2 replies
  • 14 Likes

Resolved! PAN-OS 5

so the long-awaited v5 is now available.  What are the implications of upgrading to it?

  • is rollback to v4 straightforward (we're on 4.1.8 now)?
  • does it force you to use the new PAN web-filtering database, or can you continue to use Brightcloud?
  • Do we ne
...

UserID is not working for all applications

Hello,

I tried to make some policy rules for access to a specified group form LAN to DMZ. These rules work for applications like RDP en WEB. But when i try to do the same for applications msrpc or ms-ds-smb, then userid is not working.

Also when this p

...

RHN by L0 Member
  • 1477 Views
  • 0 replies
  • 0 Likes

Simultaneously connections with NetConnect

We recently replaced our 2 remote sites with PA-500 and PA-2050.  We still use NetConnect and currently we can't simultaneously connect to both sites.  Is there a way to make this happen?  We have to disconnect one site then make a connection to the

...

Auto-update not functioning

Currently whenever our palo alto 5050s do their dynamic updates they are not finding any new updates to antivirus, applications, or URL filtering. Updates are only found when I manually perform a check. I have all 3 set to download and install with a

...

cbolitho by L1 Bithead
  • 2451 Views
  • 2 replies
  • 0 Likes

Time based No-decrypt rule?

Hi All,

On my site we have a Decrypt-all rule in place (apart from some no-decrypt rules for specific business related sites).

The problem I have is that some users are having issues accessing sites like Easyjet and Ryanair's booking pages, this I am f

...

JRussell by L3 Networker
  • 2682 Views
  • 6 replies
  • 0 Likes

Policies - Security - Rule shadowed by 2nd rule

Much like an access list on a cisco router top to bottom. I recently created 2 rules for our 3rd party ISP to connect internet sticks via our firewall.

1st rule - Allow all traffic via TELUS internet sticks from Trust Vpn, Source (telus), Destination

...

Is it PAN 4.1.8 ready for production environment?


Hello

I find that in PAN 4.1.8 is new feature:

"User/Group-based Portal Configurations – The GlobalProtect Portal now supports multiple agent configurations on a per-user or user-group basis within one portal configuration."

I know that its fresh ... bu

...

_slv_ by L4 Transporter
  • 5105 Views
  • 13 replies
  • 0 Likes

Resolved! configuring NAT with TAGGED subinterfaces

In order to overcome the limited number of physical interfaces on the PA-200, I need to have one physical interface handle traffic for two different zones, A & B. These zones need to talk to each other and to other internal zones (with security polic

...

ewilen by Not applicable
  • 3476 Views
  • 5 replies
  • 0 Likes

Resolved! PA in VWire mode between trunked ports

Greetings,

Before, I get to the matter, I have browsed through the discussions and did find solutions.  But I am unable to understand a few concepts. 

I have a scenario where;

1. The present firewall is a virtual firewall hosted on an ESXi Server.

2. Li

...

Resolved! Exporting NAT configuration

So I'm wanting to get the XML out of the firewall for specific DMZ's so that I can assemble IPAM updates from the XML.

Right now, if I ssh into Panorama, go into config mode, and issue this command:

show device-group DMZ pre-rulebase nat rules

Then I ge

...

jsilvia by Not applicable
  • 3251 Views
  • 2 replies
  • 0 Likes

Using Third Party Certificates on a Palo

Does anyone know what the best certificate to use on a Palo is please? We have a customer who is failing PCI compliance testing as we are using a self signed certificate which was generated on the Palo for Global Protect. Any help or advise would be

...

Filter out certain traffic (DNS)

I am looking for a way to omit DNS traffic from showing up in the Top Applications widget. I thought Application Override might have been the way but it proved unsuccessful. Anyone try this before? Or have something you can point me to?

Thanks in adva

...

phalen00 by Not applicable
  • 1501 Views
  • 1 replies
  • 0 Likes

Traffic on untrust interface - problem

I have a problem. I have 8Mb internet connections some of my servers are directly connected to internet (I have a switch connected to servers and PA200).

Every day throught untrust interface are made backups of this servers. So the traffic on untrust

...

_slv_ by L4 Transporter
  • 2196 Views
  • 4 replies
  • 0 Likes
  • 24193 Posts
  • 100 Subscriptions
Top Liked Authors
Labels