General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 357 Views
  • 0 replies
  • 0 Likes

WebSense to BrightCloud URL Category Mapping

Hello all,

I am trying to find out a document that maps WebSense URL Categories to BrightCloud Categories.

A lot of our customers are replacing their WebSense URL Filtering System with the BrightCloud Database that comes with Palo Alto Networks Applian

...

ggoudr by L2 Linker
  • 3732 Views
  • 2 replies
  • 0 Likes

Resolved! Global Protect user authentication

It seems that Global Protect will send user authentication request twice per logon.

I setup a lab and the backend authentication server is RADIUS Server, and I find there will be two access request per logon.

Is it correct? Is there any parameters I ca

...

Software upgrade from version 4.0.7 to version 4.1.6

Hi All,

Can we directly upgrade the OS version from 4.0.7 to 4.1.6. Is there no need to install the base version 4.1.0. My plan is to upload only the software version 4.0.8 up to 4.1.6 then install directly to software  4.1.6.

Thanks,

Jan

janm by Not applicable
  • 2716 Views
  • 4 replies
  • 0 Likes

why commit is there without any change made

PANOS : v4.1.6

Model : PA-500

In the isolated LAB, only management port connected on PA-500 and service route operate well via the management port. I make sure the commit is grey after basic configuration (IP/netmask/gateway/DNS/NTP) set, license  retr

...

Block Mobile Devices

I was wondering if anyone has created a custom app-id to identify mobile devices to create policies around. For example block all mobile devices getting to the internet, or apply a QoS policy ect.

Thanks,

Resolved! LDAP and user authentication/authorization

Hi all!

I have a problem using LDAP for user/management authentication/authorization. When I try to log in via my domain I get the following in my log (after logging in again with the admin account):

Authorization failed for user *\*via Web from *.*.*.

...

Resolved! Service route for ldap

Hi,

I have implemented a Palo Alto without Management interface, only an Inside interface/zone and Outside interface/zone. I configured the service route configuration to use Inside IP address for updates, dns... (all service routes). Also I have conf

...

How to sync Captive Portal Redirect Host in A/A - Setup ?

Hi *,

I have problems to sync Captive Portal Settings in a Active/Active HA-Setup.

I configure the CP on the active primary host as follows :

     Enable Captive Portal - checked

     Server Certificate - cp-cert

     Authenticaation Profile - company-rad

...

PAN agent Group cache on PAN

Hello, I'm using PAN OS 3.0.5 and doing

> debug device-server dump user-group name

followed b the tab I'm seing very old group that are not anymore in the Filter group member of the pan-agent. It seams that the PAN have cached the olds user/group relat

...

PA 5050 HA Failover Premeption

I have configure Active/Passive HA between two PA 5050 Firewalls. One is at high(passive) Priority and another is low(Active). I have also configure Preemtion on Active Firewall, meaning if somehow Active PA fail ,the Passive become active ,but when

...

itsecll by L1 Bithead
  • 2081 Views
  • 2 replies
  • 0 Likes

blocking file-sharing subcategory

I would like to block everything in the file-sharing subcategory of the general-internet category. Currently we are allowing this subcategory.

I would like to see what the impact of a policy like this would be, so I setup a policy for this subcategory

...

KenKruger by Not applicable
  • 2867 Views
  • 3 replies
  • 0 Likes
  • 23834 Posts
  • 112 Subscriptions
Top Liked Authors
Labels