General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 270 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3595 Views
  • 2 replies
  • 14 Likes

User-ID with 802.1x problems wired and wireless

Hi all.

 

We have PA-820 with 10.1.2 with User-ID Agent on Windows AD runing version 10.0.4-r23 and we are using Cisco switches for users. We have 802.1x enabled on ports for users. The problem we have is, that PA doesn't recognise users from 802.1x, i

...

Interfaces in power-down state

Hi all...I have a Palo Alto Active/Active pair and the HA3 link between them is down. Will PANOS then power-down all other physical interfaces when the HA3 link is down. Just looking for confirmation that this is expected behaviour or whether I have

...

Decryption or blocking NordVPN

Is it possible for Palo Alto Firewall to decrypt third party VPN agent traffic such as NordVPN, NordLynx like decrypt HTTPS web-browsing traffic?

 

If it cannot decrypt these traffic, anyone know the App-ID for NordVPN, NordLynx?

I found some VPN app-ID

...

JoeKwok by L2 Linker
  • 3574 Views
  • 3 replies
  • 0 Likes

Resolved! cortex xdr agent connection problem

hi everybody,

 

we've installed cortex xdr agent on a terminal-master server which gets cloned for distribution

 

xdr-agent on master has active connection to cortex-cloud

 

but cloned servers can't connect...

 

 

xdr-log:

 

2022/05/18T14:32:44.590+02:00 <Info>...

Resolved! Management IP in Active/passive setup

Hi 

 

I am quite new to Palo Alto firewalls, but have worked with different vendors before. 

 

When running a HA in Active/passive a central VIP for mgmt is usually setup, so you dont connect to the passive FW.

From what i see there is no VIP for mgmt in

...

Url problem

Hello everybody.

I allow a url. I also allowed categories for that url, but the site still doesn't work properly. There is a problem connecting to a server on that site and it is deny

 

Thanks in advance

Fagani by L2 Linker
  • 3140 Views
  • 7 replies
  • 0 Likes

Resolved! Panorama 10.0.5 - Scheduled Config Export - ssh custom port

Hi,

we try the export of the config of Panorama and our bothe Firewalls 3260 thru the "Scheduled Config Export".

It runs well with FTP and SCP port 22.

 

With a custom port ssh, the "Test SCP server connection" failed.

 

I found no future infos on https://

...

bovay by L1 Bithead
  • 2679 Views
  • 4 replies
  • 0 Likes

Resolved! Palo Alto PA-3220 replace Bluecoat Proxy

Hi Guys,

 

Does anyone tried to use PA-3220 model as proxy server? Currently the internet traffic of my company is using bluecoat proxy with pac file (config in windows proxy setting), and the proxy also inline with sourcefire for doing SSL interceptio

...

Fast DNS Resolution Issues

Hello Community,

I checking to see what everyone is doing for their allow lists for some thing like an S3 bucket. 

 

Scenario: Lets say my server has no internet access due to policies denying the traffic. I then create an object, FQDN,  xyz-s3.amazo

...

Reference guide to configuration xpath and entry?

Is there any PA published document for the node paths and entries in the configuration file? And how do you tell if something is a path or an entry in the config? It seems extremely painful to try and figure out an xpath to pull the data you want. Se

...

Resolved! Prisma SD-WAN application SLA setup?

Where can I know how to setup the application SLA condition?

 

I read some Prisma SD-WAN Administrator’s Guide, I seen there are lot of function to enable Path selection and monitoring based on the Link Quality, SLA.

 

But how can I set the SLA of the ap

...

JoeKwok by L2 Linker
  • 2426 Views
  • 3 replies
  • 0 Likes

Antivirus Security Profile

Hi everybody,

 

i've enabled and configured an antivirus security profile and attached to a security policy for web-traffic

 

as i see web-traffic can be antivirus-scanned, but my problem is: traffic is identified as ultrasurf with port 8080

 

so antivirus

...

  • 24173 Posts
  • 100 Subscriptions
Top Liked Authors
Labels