General Topics

Discussions

Sorted by:

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

High temperature DP0 CORE PALO ALTO PA5220

Hello team

Since 2 weeks ago we have detected that the temperature for Sensor DP0 Core is high than other members the Paloalto FW

It is normal?

show system environmentals

----Thermal----
Slot Description Alarm Degrees C Min C Max C
S0 Temperature

...

Invalid Role - RADIUS

Greetings!

Am troubleshooting PA authentication using RADIUS. The user is part of the appropriate AD group for the RADIUS configuration and the PA and RADIUS server are both setup for RADIUS auth.

On the PA side, added an administrator and set their

...

Resolved! CSRF Protection

GlobalProtect portal page isn't protected by anti-CSRF tokens. Is it possible to add this protection?

LDAPS

I am in the process of setting up LDAPS on an 850. I created an LDAPS server profile and pinted it to our server for credentials. Aftr creating that, I set up an Authentication profile and Authentication sequence (wasnt sure if it was needed but the

...

NCR saving passwords with MD5 hashing

Hi,

was wondering if someone could tell me if there's a way of changing the hashing method when passwords are saved in Palo Alto. I can see from 2010 the method is MD5 and we are also dealing with an NCR stating the same, but I can't see anywhere thi

...

problems with LACP

Hello, I am trying to set up a LACP between a palo alto 3220 ztp firewall and a DELL switch, I have the following problem, it does not set up the LACP.

admin@PA-3220-ZTP> show lacp aggregate-ethernet all

LACP:

**************************************

...

Browser User-Agent string detection/blocking/logging?

Hello,

Is it possible for the Palo Alto to natively identify, detect, block and/or log the browser user-agent information if the application is "web-browsing"?

Thanks,

-Paul

Unable mapping a field on custom incident type on Coretex Xsoar

We would need to map to our incident type an item that comes from our Siem, but when I select the incident type to use and the related instance, it doesn't allow me to map the aforementioned field.

PA VM

how to download PA VM for practice purpose.

Prisma URL filtering

Hello ther

have any of you ever had this kind of error?
no matter how many times I change the value ( Allow / Deny / Continue ) I always get this error message when I push my configuration .
Thanks and have a nice day

errors

Validation error

...

VA Scan for Generic-tcp-timestamp & ICMP timestamp response

Hi All,

We had VA Scan finding for Palo Alto’s MGMT INTERFACE IP. Please refer to below:

Generic-tcp-timestamp
ICMP timestamp response

May I know how can this be blocked for Palo Alto’s MGMT INTERFACE?

Resolved! PaloAlto VM Firewall Installation on ESXi Host

Hi Team,

We are about to install the VM FW on ESXi host but facing issues while doing it. We have downloaded the base image ova for the version 11.0.1. Is this correct image to install? Or any other image to be used?

PA-VM-ESX-11.0.1.ova

Actually una

...

Resolved! GlobalProtect Stuck (Still Working)

Hello, I am stuck on "Still working screen"

Logs:

Spoiler

P2018-T27719 06/29/2021 12:48:11:636 Info ( 228): InitConnection ...
P2018-T27719 06/29/2021 12:48:11:636 Debug( 57): fd still open before connect
P2018-T27719 06/29/2021 12:48:11:636 Error( 80):

...

Partner Locator - Official and Certified

Hey guys, is there a partner locator on here where you can search for official and certified Palo Alto specialists? Trying to get basic Panorama configs done, thanks.

SSL Certificate expiration date monitoring options

Hi guys,

We have external CA certificate for global protect VPN which we want to monitor for its expiration date so that we can get it renewed we in advance to avoid any outage. can anyone pls suggest how can we achieve it.

thanks in advance!!