General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How paloalto security roles work

Hello Everyone


I want to know about Paloalto security roles. I mention the problem I have


In our system, there are many roles for internet access. All roles are assigned with active directory groups.
A user can have one or more internet roles.
For exam

...

Fagani by L2 Linker
  • 1572 Views
  • 3 replies
  • 0 Likes

Global Protect VPN - Mac OS Ventura

Hi 

Trying to install the VPN product GlobalProtect-6.1.0.pkg onto a M2 Laptop running Ventura. 

 

I get the Installation failed message and to contact the software manufacturer for assistance.

 

Any ideas why it wont install? have admin rights as we

...

Threat alert emails

I see threat alerts as critical but no words of block. Are these still getting thru even if flagged as an alert? How do I verify or change to alert and block?

MMurphy1 by L1 Bithead
  • 880 Views
  • 1 replies
  • 0 Likes

Flow group IDs

In PAN OS show running resource-monitor ingress-backlogs assigns a group-ID to each session consuming more than 2% of packet buffer. I am looking for way to identify what these group-IDs map to on PAN OS e.g grp-id 2 refers to flow_slowpath. Is there

...

Resolved! How to add address from .json file

Hi

I need to whitelist some ip address and the Service provider has provided me dest. address in .json file

IP addresses for the firewall allowlist - Genesys Cloud Resource Center (mypurecloud.com)

 

How can i add these address from .json files to my

...

Resolved! Delete VSYS configuration

I have a VSYS on my PA-5050 which is no more required and needs to be deleted.

What steps needs to be taken for this?

Is it unassigning all the interfaces in that , deleting all policies etc or do we have a proper step by step thing for this?

Thanks all

...

Vaibhav by Not applicable
  • 10982 Views
  • 6 replies
  • 0 Likes

VRRP with Cisco router LAN interface

My default branch configuration, the WAN router is the default route for the client devices on the LAN.  Lets say 10.10.1.1/24

My firewall is the default route of the WAN router, lets say 10.10.1.254/24.

Cheap layer 2 switfh on the LAN, so no L3 routin

...

SAML for direct login on many firewalls

I got SAML working fine with Okta for Panorama.  Very nice.  Next, I have "many" firewalls which are managed by Panorama, and I find myself directly logging in to them frequently enough that it would be nice to have SAML for that too.  (Context switc

...

Traffic hits on the ruler but does not show on the monitor

Hello,
I have a problem in paloalto and is that I see that a particular rule increases hits but does not show the traffic in the logs, however, everything is configured to see it, if I see, the start and end of sessions but in the Fortigate in front o

...

Alpalo by L4 Transporter
  • 3415 Views
  • 1 replies
  • 1 Likes

Resolved! Looking for some advice on Licenses

Hello All,

this is just a question to see the best approach, bear in mind this is not a tech question. OK in advance apologies for the next line.

Our company is a gold partner for Cisco. However, we also support Palo Alto. I am a consultant for PA an

...

Shadow by L2 Linker
  • 1455 Views
  • 2 replies
  • 0 Likes

Resolved! Dataplane issue

Hello

 

i have 2 Palo Alto in HA Mode Active/Passive and yesterday the Active when down and i lost all the LACPs ,then i start to troubleshooting to see the cause and i found this

could you tell me if is this bug issue or interface issue please ?

 

18/11/

...

Resolved! Combined source & destination NAT in one rule

Can you perform source AND destination address translation on a single packet? I know NAT rule processing is first rule match so more specifically, can I have a single NAT rule that defines a source and destination translation?

plago by Not applicable
  • 5650 Views
  • 6 replies
  • 0 Likes
  • 23570 Posts
  • 103 Subscriptions
Top Liked Authors
Labels