General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

issue when import APP & Threat file

Hi, i have an issue when i tried to import the App & threat file into my palo alto but it shows the following error, Getting error "Failed to update content with following message: encfilesize is xxxx. No threat content update is applied. No valid Threat prevention license. exiting with 255" From device -> license, I can see my threat lic...

How to disable RSA/SHA1 on Palo alto device for SSH access

We are using OpenSSH v8.2 cannot connect to SSH hosts with SSH Proxy enabled (SSH Decryption). Testing showing that this is due to the Palo Alto attempting to use RSA with SHA1 which has been removed by OpenSSH in v8.2. Is there a way we can configure the Palo Alto to disable RSA/SHA1 for SSH?

High temperature DP0 CORE PALO ALTO PA5220

Hello team Since 2 weeks ago we have detected that the temperature for Sensor DP0 Core is high than other members the Paloalto FW It is normal? show system environmentals ----Thermal----Slot Description Alarm Degrees C Min C Max CS0 Temperature: Broadwell MP Core False 38.40 -5.00 85.00S1 NP False 36.50 -5.00 70.00S1 CP False 33.50 -5.00 8...

Alpalo by L4 Transporter
  • 7663 Views
  • 7 replies
  • 0 Likes

Invalid Role - RADIUS

Greetings! Am troubleshooting PA authentication using RADIUS. The user is part of the appropriate AD group for the RADIUS configuration and the PA and RADIUS server are both setup for RADIUS auth. On the PA side, added an administrator and set their auth profile as the radius profile. When the user tries to login, the PA log shows: User 'userX' ...

SDorsey by L4 Transporter
  • 11858 Views
  • 8 replies
  • 0 Likes

Resolved! CSRF Protection

GlobalProtect portal page isn't protected by anti-CSRF tokens. Is it possible to add this protection?

LDAPS

I am in the process of setting up LDAPS on an 850. I created an LDAPS server profile and pinted it to our server for credentials. Aftr creating that, I set up an Authentication profile and Authentication sequence (wasnt sure if it was needed but the documentation said it was optional. I created an admin account that has the authentication profil...

NCR saving passwords with MD5 hashing

Hi, was wondering if someone could tell me if there's a way of changing the hashing method when passwords are saved in Palo Alto. I can see from 2010 the method is MD5 and we are also dealing with an NCR stating the same, but I can't see anywhere this can be changed/updated? If this still the current default for storing Passwords in a Palo? Any ...

Ian_Rix by L0 Member
  • 2875 Views
  • 2 replies
  • 0 Likes

problems with LACP

Hello, I am trying to set up a LACP between a palo alto 3220 ztp firewall and a DELL switch, I have the following problem, it does not set up the LACP. admin@PA-3220-ZTP> show lacp aggregate-ethernet all LACP: ******************************************************************************** **AE group: ae1Members: Bndl Rx state Mux state Sel...

Prisma URL filtering

Hello ther have any of you ever had this kind of error?no matter how many times I change the value ( Allow / Deny / Continue ) I always get this error message when I push my configuration .Thanks and have a nice day errors Validation error occurred in: Region: Ireland Validation Error: profiles -> url-filtering -> Navigation Inte...

Resolved! PaloAlto VM Firewall Installation on ESXi Host

Hi Team, We are about to install the VM FW on ESXi host but facing issues while doing it. We have downloaded the base image ova for the version 11.0.1. Is this correct image to install? Or any other image to be used? PA-VM-ESX-11.0.1.ova Actually unable to select this image from Datastore while creating the VM. Somehow when we did that we are ab...

Resolved! GlobalProtect Stuck (Still Working)

Hello, I am stuck on "Still working screen" Logs:Spoiler (Highlight to read)P2018-T27719 06/29/2021 12:48:11:636 Info ( 228): InitConnection ...P2018-T27719 06/29/2021 12:48:11:636 Debug( 57): fd still open before connectP2018-T27719 06/29/2021 12:48:11:636 Error( 80): CPanSocket::Connect - Failed to connect to server at port:4767P2018-T27719 06...

Снимок экрана 2021-06-29 в 12.50.30.png
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels