General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1795 Views
  • 0 replies
  • 0 Likes

Panorama SSL Decryption Rules

Hi all,

I have some problem during commiting decryption policy (Forward Proxy) to devices from Panorama. Panorama tells me only one things: "commit all failed" :smileymischief:

I suppose something related to decryption certificates that are device depe

...

SSL decryption in 4.0

Hi,

Is there an article describing how SSL decryption is to be configured in the current version 4.0 ? I can see there has been some changes in the way certificates are being used.

Regards,

Sunil

Respond to ARP for path-monitor IP in virt-wire mode?

Does anyone know if PANOS 4.0 responds to ARP requests for the IP used in HA path-monitoring?

I know that path-monitor sends pings or something similar to the devices it is monitoring.  When you setup path-monitoring, you specific what source IP shoul

...

Mack by L2 Linker
  • 3274 Views
  • 2 replies
  • 0 Likes

Resolved! Virtual System Settings - Recources

When setting up virtual systems, what are the general guidelines for settings in the resources tab.  Do they have to be filled in with a number?  If left blank, how does the system divide resources?

cmaier by L1 Bithead
  • 2652 Views
  • 1 replies
  • 0 Likes

Resolved! URL Category Action = None?

Hmm, Page 148 of the 4.0 Admin Guide lists all the category actions except 'none'.

What is 'none'? It doesn't seem to do anything. If i select it and click OK, the action has gone back to 'allow' when I reopen the URL profile.

I have two main pools of

...

sbremner by L0 Member
  • 3874 Views
  • 1 replies
  • 0 Likes

Captive Portal with Session Cookie - Synchronization problem

Hi,

     I have a pair of PA 2050 in cluster and the synchronization was working fine until I try to enable the option Session Cookie in the Captive Portal configuration. The only way I have find to re-synchronize my cluster is to disable the Session

...

u7377 by Not applicable
  • 2331 Views
  • 1 replies
  • 0 Likes

Global Protect - Source User 127.0.0.1

Hi,

I'm doing a configuration with global protect that working fine on my pc (laptop with Win 7). But when the real users doing the same with their pc's (Desktop with Win Xp) it dosent work, Global protect give the good message to the user but doesn't

...

u7377 by Not applicable
  • 2586 Views
  • 1 replies
  • 0 Likes

Global Protect Setup using an external CA

Can anyone help with setting up GP to use certificates from an external CA ?

Ive managed to get it working using an internal CA & signing the server & client certificates defined in the portal against that - but Im struggling to get it working when I

...

SimmSimm by L2 Linker
  • 2062 Views
  • 1 replies
  • 0 Likes

Resolved! About Active-Active on Vwire

Hello guys.

I tested for now about active-active pair on vwire mode that is simplest deployment I know. but I could not find that more information for active-active HA pair on vwire.

I wonder about that A-A vwire needs ACTIVE-ACTIVE configuration such

...

ttongfly by L3 Networker
  • 10195 Views
  • 5 replies
  • 1 Likes

comscore

Has anyone had any experience with this Comscore app this article is speaking of?

http://www.cleveland.com/business/index.ssf/2011/08/privacy_lawsuit_targets_comsco.html

If anyone has found it and logged the traffic I would be greatful if you post it

...

kazjak by Not applicable
  • 1866 Views
  • 1 replies
  • 0 Likes

CryptoCard Card.

When using the Cryptocard authentication server we have had issues where no radius packets are coming through the PA500 on version 4.0.1.  When the packet capture (tcpdump) was run no packets appeared on the interface.....

The only way to solve this p

...

amansour by L4 Transporter
  • 2122 Views
  • 2 replies
  • 0 Likes

CLI ping and traceroute resolving ip

Hi,

In the GUI the PA is resolving ip address by quering the dns server. But with CLI commands like ping and traceroute it doesn't seems to do DNS resolving. I think it should be because there is a CLI command no-resolve.

Any ideas why it isn't resolvi

...

LDAP Error - AD Integration

Hi

has anyone encountered the following error.

When i type the following command

enayat@fw-tec1-pa2050>show user ldap-server state

LDAP server HO_LDAP
Bind DN : zajil\fwadmin
Base :  dc=zajil,dc=com
Group Filter: (None)
User Filter: (None)
Servers :  configur
...

  • 24239 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels