General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 397 Views
  • 0 replies
  • 0 Likes

Management Interface down

Hello,

 

i have the problem that I have two PA-445 as HA clusters where the management interface does not have an uplink.
I've already tried several cables and switches, but unfortunately I can't get an uplink on the interface.
There is no spanning tre

...

Resolved! Negate Deny Rule

Hi All,

 

I have a negate rule on the firewall 

Souce Address - 10.1.1.1(Negate)

Destination Address- Any

Service- https

Action- Deny

 

Does it mean that it will allow 10.1.1.1 and deny everything or does it mean that it will deny everything and then

...

Ujbal89 by L0 Member
  • 1013 Views
  • 1 replies
  • 0 Likes

Resolved! Secure Renegotiation in PANOS 9x?

I'm seeing some posts stating that Secure Renegotiation is not supported on the Palo Alto platform. Is this still true for the latest release, v9.x? If so, how is it enabled? 

Personal VPN Services thwarting Company Policies

Downstream of our PAN's, we have our Citrix environment.  This environment includes some Netscalers that have a nice feature in that they provide in their SYSLOG, two fields named "ClientIP" and "NATIP".   This proves quite useful in that while the C

...

Jaragorn by L1 Bithead
  • 3579 Views
  • 16 replies
  • 0 Likes

Resolved! EDL problem

Hi,

I find this error: EDL(my list) Entry not referenced by a rule.

What does it mean? How can I resolve it?

s_quasar by L3 Networker
  • 22169 Views
  • 18 replies
  • 0 Likes

Detect Unknowed device

There is a functioning access point TP-Link EAP225.
Cannot be managed from connected devices.
We know MAC Address because present on a label.
Is on a unknowed subnet.
But this device use gateway with Palo Alto.
We don't know IP (we have try all usal IPs).

...

configuration change used to be pushed to firewall

Hi Configuration change in template/stack used to be pushed to the firewall from panorama. but now after some change(creating new zone etc) made on template is pushed to the firewall, the change cannot be seen at the firewall again. so the configurat

...

kevinospf_0-1694620407770.png
kevinospf by L3 Networker
  • 2168 Views
  • 8 replies
  • 0 Likes

submit error message when remove DG

 

 

 

Hi  Device group is created in panorama. but when I want to remove all of Device goup and submit, I got the error message. Since it is invalid command, why it cannot be removed? Please see the below. Thanks

 

 

kevinospf_0-1695089104872.png

I want to block PotatoVPN ( Threat ID 86751 )

 

I want to be able to block PotatoVPN Traffic. I am successful in most of my other VPN threat hunting safaris but this one is fairly new and my current rules don't capture this little guy.  Has someone out there created a policy that successfully bl

...

  • 23842 Posts
  • 112 Subscriptions
Labels