General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14501 Views
  • 1 replies
  • 4 Likes

Possible to disable SSH CBC cipher and weak MAC hashing?

Hi,

 

May I check if it is possible to disable SSH CBC cipher and weak MAC hashing on Palo Alto Firewall?

If so, may I know how to do it.

 

Had no luck searching for a solution online.

Seems like there is no menu/config file (e.g. /etc/ssh/ssh_config) to e

...

boss82 by L0 Member
  • 9244 Views
  • 3 replies
  • 0 Likes

Move interface to different vsys

Interface ethernet1/1 is currently in vsys1. When I try to change this to vsys2 from Panorama I get the message that the interface is already in use (by vsys1).

 

If I try to remove it from vsys1 in Panorama push is OK, bit it is still in vsys1 on the

...

hncl01 by L0 Member
  • 412 Views
  • 0 replies
  • 0 Likes

/dev/shm filling up after 10.0.6 firmware

TMPFS partition /dev/shm on the VM series PAN.

 

Typically this is cleared on reboot but after upgrading to 10.0.6 its failed to clear the space on system reboot.

 

We have looked at the other drives on the PAN are there seems to be no capacity issues ot

...

Enable split tunnel for Zoom

Hi

 

We are planning to exclude all zoom traffic from Global protect VPN and currently we are using 4.1.5 GP agent version.

 

I have gone through the zoom documentation and created EDL but not getting option to exclude the EDL (external dynamic list ) in

...

Yusuf_PA by L1 Bithead
  • 2797 Views
  • 3 replies
  • 0 Likes

Resolved! 3250 HA setup

Hello

I am trying to setup HA on a pair of 3250s and am a little confused between what the datasheet says and what's available. Is there an example out there of how to set the ha1-a and ha1-b ports up. I've only done PA-850s and it appears the 850s ha

...

Error installing dynamic update Apps

Hi,

 

We are trying to install "Apps&threats" version, but we are receiving an error. We tried to do a rollback version, install a new one but always we have the same error. Its not possible to delete that version by WebUI. Any command to delete app&th

...

BigPalo by L4 Transporter
  • 1223 Views
  • 3 replies
  • 0 Likes

MGMT interface routing questions

When I configure the mgmt interface on its own network and I use the PA for routing, do I need to setup a static route to access the HTTP interface from a different network? Or does a service route take care of this automatically?

 

I have an HA active

...

Restrict Access to WAN Network PANOS9.0.x

Hi,

 

We're looking to restrict access to our network in AWS on the other side of an S2S VPN. From the research i've done it looks like i can set up restrictions on the tunnel using User-ID and Captive Portal. https://docs.paloaltonetworks.com/pan-os/9

...

MP2021 by L1 Bithead
  • 730 Views
  • 2 replies
  • 0 Likes

PANOS 10.0.6

Hello, team One of my client want to know the stable version of PANOS there current one is 9.1.5 I suggested them with min apps threat Global protect user-id version and suggest the PANOS 10.0.6 After that the client send me the issue below. The PANO

...

Top Liked Authors