General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Route to IPSec Tunnel

Hi All, I need to add a route pointing to a Tunnel interface. As the peer has dynamic IP have created the IPsec tunnel with Dynamic IP Peer Identification as its Hostname. To Add route in the VR as we do not have IP address if i just point it to the tunnel interface and select IP address as none would be enough? Or is there any other way to ...

Email Scheduler Not Working

Hi Team I am on panos 10.2.4 and having issues sending a test email via email scheduler via smtp.zoho.com.au Email profile has been configured and I can receive test emails but from the actual email schedulers I get a failed to send an email message can somebody please help? thank you

nevolex by L3 Networker
  • 5313 Views
  • 3 replies
  • 0 Likes

Global Protect MFA with Google Authenticator

Dear Team, Please help me understand can we configure TOTP Google Authenticator(Free) for Global Project VPN users we have configured Global Protect VPN with AD authentication and want to configure the above solution. Thanks in Advance Regards Sandip Kumbhar

issue when import APP & Threat file

Hi, i have an issue when i tried to import the App & threat file into my palo alto but it shows the following error, Getting error "Failed to update content with following message: encfilesize is xxxx. No threat content update is applied. No valid Threat prevention license. exiting with 255" From device -> license, I can see my threat lic...

How to disable RSA/SHA1 on Palo alto device for SSH access

We are using OpenSSH v8.2 cannot connect to SSH hosts with SSH Proxy enabled (SSH Decryption). Testing showing that this is due to the Palo Alto attempting to use RSA with SHA1 which has been removed by OpenSSH in v8.2. Is there a way we can configure the Palo Alto to disable RSA/SHA1 for SSH?

High temperature DP0 CORE PALO ALTO PA5220

Hello team Since 2 weeks ago we have detected that the temperature for Sensor DP0 Core is high than other members the Paloalto FW It is normal? show system environmentals ----Thermal----Slot Description Alarm Degrees C Min C Max CS0 Temperature: Broadwell MP Core False 38.40 -5.00 85.00S1 NP False 36.50 -5.00 70.00S1 CP False 33.50 -5.00 8...

Alpalo by L4 Transporter
  • 7668 Views
  • 7 replies
  • 0 Likes

Invalid Role - RADIUS

Greetings! Am troubleshooting PA authentication using RADIUS. The user is part of the appropriate AD group for the RADIUS configuration and the PA and RADIUS server are both setup for RADIUS auth. On the PA side, added an administrator and set their auth profile as the radius profile. When the user tries to login, the PA log shows: User 'userX' ...

SDorsey by L4 Transporter
  • 11866 Views
  • 8 replies
  • 0 Likes

Resolved! CSRF Protection

GlobalProtect portal page isn't protected by anti-CSRF tokens. Is it possible to add this protection?

LDAPS

I am in the process of setting up LDAPS on an 850. I created an LDAPS server profile and pinted it to our server for credentials. Aftr creating that, I set up an Authentication profile and Authentication sequence (wasnt sure if it was needed but the documentation said it was optional. I created an admin account that has the authentication profil...

NCR saving passwords with MD5 hashing

Hi, was wondering if someone could tell me if there's a way of changing the hashing method when passwords are saved in Palo Alto. I can see from 2010 the method is MD5 and we are also dealing with an NCR stating the same, but I can't see anywhere this can be changed/updated? If this still the current default for storing Passwords in a Palo? Any ...

Ian_Rix by L0 Member
  • 2876 Views
  • 2 replies
  • 0 Likes

problems with LACP

Hello, I am trying to set up a LACP between a palo alto 3220 ztp firewall and a DELL switch, I have the following problem, it does not set up the LACP. admin@PA-3220-ZTP> show lacp aggregate-ethernet all LACP: ******************************************************************************** **AE group: ae1Members: Bndl Rx state Mux state Sel...

Prisma URL filtering

Hello ther have any of you ever had this kind of error?no matter how many times I change the value ( Allow / Deny / Continue ) I always get this error message when I push my configuration .Thanks and have a nice day errors Validation error occurred in: Region: Ireland Validation Error: profiles -> url-filtering -> Navigation Inte...

  • 24400 Posts
  • 123 Subscriptions
Top Solution Authors
Labels