General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 560 Views
  • 1 replies
  • 4 Likes

Resolved! Can Panorama managed devices be configured via the CLI?

Hey folks.

 

I'm adding a Panorama server into my infrastructure to enable zero touch SDWAN provisioning, and since I've never done Panorama before, I've got a question.

 

Can panorama managed devices be configured via the CLI?

 

The reason I ask this is t

...

darren_g by L4 Transporter
  • 1345 Views
  • 4 replies
  • 0 Likes

GlobalProtect IOS split tunnel routing incorrect traffic

PanOS 9.1.4, GP client 5.2.7-6. 

We have a split tunnel configuration with only 2 internal /32 addresses added to the access route include list. We regularly see traffic from GP clients destined for Internet IP addresses hit the Palo over the client t

...

Andy123B by L0 Member
  • 718 Views
  • 1 replies
  • 0 Likes

Need assistance with fixing weak Ciphers via Panorama cli

Hi 

I wanted to update weak ciphers on a PA-VM using the document below, I wanted to apply the change via Panorama but I don't see the correct config to apply.

I have tried the following:

 

>set cli config-output-format set

#set template "template name" c

...

Amin2 by L1 Bithead
  • 554 Views
  • 1 replies
  • 0 Likes

Data filtering - email issue

Hello all,

 

i was configure data filtering and it works.

But i face problems with the mailing. 

When the the fw match pattern it blocks it, but the email stuck in outbox queue  , and the user can not send/receive other emails until the mail is deleted f

...

stef by L2 Linker
  • 477 Views
  • 1 replies
  • 0 Likes

Resolved! PA 3050 web Gui access

I am working with PA-3050. I can log in using ssh, but i can not login via web Gui.

http/https service are enable though.

Can someone share some thoughts on how to proceed?

FIDELE by L1 Bithead
  • 729 Views
  • 2 replies
  • 0 Likes

Different Actions for Security Rules

Hi Guys,

I would like to know what are the difference between the following actions in the security rules for PA.

1. Deny

2. Drop

3. Reset-client

4. Reset-server

5. Reset-both

Which of these are the most preferred to use? Is deny or drop action also resets

...

Nikko by L1 Bithead
  • 1262 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect with Active/Active HA

I'm having a hard time finding much, if any, documentation on this scenario.  I've tried a couple ways of doing it and they work, but I'm trying to figure out what the best way to do it while being as redundant as possible.

 

What I like the best so fa

...

SMB URL File Logging acheivable or not?

Hi Palo Alto Experts,

 

I want to know if we want to log SMB URL Blocked events then can we do in Palo Alto or not? Basically, the requirement is as below:

 

Example URL if typed by compromise system is: smb://www.example.com/fileshare/malware.exe

 

Right

...

Add network to address group via CLI?

I am trying to add a network to an address group via CLI on PAN OS 9.1.X

 

# set vsys vsys2 address-group XXXXXXXX static 108.61.41.0/24

 

Server error :  static '108.61.41.0/24' is not a valid reference

 

What is the valid syntax?

jsogla by L0 Member
  • 507 Views
  • 1 replies
  • 0 Likes

Outside interface listening on HTTPS "502 Bad Gateway"

I have this odd issue whereas one of HA Pairs seems to be listening on 443 on its outside interface for GP but I don't use GP and never had.  I have a interface profile that allows HTTPS but not from any IP and when I disable that it still shows that

...

drewdown_0-1612816320888.png
drewdown by L4 Transporter
  • 570 Views
  • 2 replies
  • 0 Likes

Issue with proofpoint emerging threats

Hi All,

I am testing minemeld with proofpoint emerging threats service.

I am having issues with the miner because the categories are not set correctly.

I think that the miner reaches for a csv file available to proofpoint subscribers that contains ip,ca

...

Top Solution Authors