General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14500 Views
  • 1 replies
  • 4 Likes

VRRP with Cisco router LAN interface

My default branch configuration, the WAN router is the default route for the client devices on the LAN.  Lets say 10.10.1.1/24

My firewall is the default route of the WAN router, lets say 10.10.1.254/24.

Cheap layer 2 switfh on the LAN, so no L3 routin

...

Resolved! DNS Proxy/Security

I was curious to know if anyone was pointing their domain controllers to the firewall for DNS security/proxy?  Mine currently use the ISP, but the clients use the firewalls as a proxy and then just rule just forward internal domains to the DC.  Seems

...

bschaper by L2 Linker
  • 1925 Views
  • 5 replies
  • 0 Likes

Resolved! Wildfire without SSL Decryption

We are looking at Wildfire for our PA firewalls however, we are not doing any SSL decryption. Going into it I figured we only be and to use it on unencrypted traffic. But looking at the Wildfire datasheet under file support it lists TLS and SSL files

...

bafergel_1-1627663836266.png
bafergel by L2 Linker
  • 973 Views
  • 1 replies
  • 0 Likes

Resolved! Regarding sinkholed hosts

Hello Bros,

    We have subscribed to palo alto dns-security and the license has been applied to the device.

Rules with anti-spyware "dns-security sinkhole action enabled".

Now regarding the hosts with sinkhole action, that means these hosts trying to c

...

Authentication Fallback

Hello,

So, we currently authenticate administrators to our PA's via Radius (TACACS).  Is there a way to configure the PA's that it will only use the local DB / Administrators if Radius isn't available? 

Thanks!

mrsold by Not applicable
  • 5117 Views
  • 6 replies
  • 0 Likes

Issue CDN and AVG Update

Hallo Community,

 

I have an issue about AVG and CDN. I used PA 220 with Detials :

Software Version10.0.6Application Version8435-6846 (07/27/21)Threat Version8435-6846 (07/27/21)Antivirus Version3791-4302 (07/28/21)NetworkLayer 3

 

 

1. AVG Update

Regarding

...

Verify pdf report sent via email scheduler

We have configured email scheduler to send reports in pdf format.

I'm able to receive the email. But attachment is missing.

I can see from system logs that the files are created and email is sent.

How can I verify whether the PDF report was attached to

...

Paloalto don t send log correctly to logstash

Hi evrey one,
I'am new to Paloalto and I have a problem with the threath log. I am currently using ELK stack to store and visualize all log from paloalto. 
When I send the traffic log to logstash there is no problem (there are all field explained in th

...

Betorov by L0 Member
  • 752 Views
  • 1 replies
  • 0 Likes

Global protect not working

Hi Team,

 

We have faced our GP not working 26/07/2021 around 09:15 pm.

 

After the firewall restarts its started to work. When I analyzing TSF I got the ssl vpn below error.

 

"The PID for this process changed indicating it was restarted"

 

2021-07-26 21:17

...

VishnuPS by L3 Networker
  • 891 Views
  • 3 replies
  • 0 Likes

New 5220 non-functional state

New HA 5220 active-active and non-functional status.

HA-1 and HA-2 cable attached

Set up box boxes direct mode and then created templates via Panorama

Panorama doesn't display to parameters defined in direct config status

How to ensure configs are dumped

...

Default MTU of 1496B in interfaces of VM platforms?

Dear community!

 

We have couple of VMs deployed in MS hyper-v and I realized that all interfaces have a MTU of 1496 bytes even though no value was configured. Checked this with "show interface XXXX" command

 

Shouldn´t the interfaces have MTU of 1500 by

...

Top Liked Authors