General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 380 Views
  • 0 replies
  • 0 Likes

Global protect - external gateway blocking?

In the global protect gateway settings where you can select the priority by region does the firewall block connections from any regions that are not included there?

 

this is the article discussing the feature I’m referring to:

 https://docs.paloaltonet

...

Can't enable user-id on sd-wan zones

I need to enable user-id on panos sdwan zones - e.g. zone-to-branch. I can enable it in the template on panorama, but it doesn't change on the firewall when pushed. Everything else is working fine, so this is not and template/stack issue. Is this a s

...

Resolved! Basic question regarding policy

Just trying to understand the policy a bit more.

under the policy |  application, if I select FTP and select http/s under the service, I assume fw is expecting FTP to run on port 80/443?

hence, if I select app default on services, it will then expect

...

Shadow by L2 Linker
  • 2090 Views
  • 3 replies
  • 0 Likes

Panorama in AWS

In an AWS environment which is making use of the TGW and GWLB,  is it okay to deploy Panorama in a VPC that gets routed through GWLBe or should Panorama get deployed in the security VPC and have the route tables bypass all gwlb endpoints?

 

I'm wonde

...

Resolved! Is A/P Throughput synchronized?

Dear Team,

 

I know that sessions are synchronized except for the conditions below in the A/P configuration.

 

-In Active/Passive mode, ICMP and host sessions are not synchronized between peers.
(Note: A host session is a session terminated on one of

...

CHOEKyungJun_0-1669957164036.png

How to correctly decrypt FTP (over TLS) traffic

Hi,

I am facing the common issue of Passive FTP (over TLS). Basically, the connection fails due to the dynamic ports assigned in the encrypted channel. It is clear that the solution is to configure PA to decrypt the traffic to identify the dynamic po

...

HA ports up when connected but HA NOT enabled?

Do the HA ports come up even if HA isn't enabled? 

 

I have a production 3220 I am trying to add a new 3220 to and before I enable HA I wanted to make sure the HA ports were up and working before I flip the switch.  The HA ports are showing down and

...

drewdown by L4 Transporter
  • 2429 Views
  • 1 replies
  • 0 Likes

Clientless Portal no longer working after upgrade

Hi,

 

The Clientless Portal is now displaying a blank page after a software upgrade (from 9.0.9xfr to 9.1.15).

The developers say that the javascript minification process is no longer working and no longer pushing data into the Pan_js module for it t

...

CraigAddison_1-1669980807406.png

Suggestion on Initial Configuration of Palo-Alto

Hi All,

We would be needing suggestion on the below scenario:

 

We are having an new Palo-Alto firewall connected via management console in our data center which is integrated with Panorama and we have pre-configured the box by pushing the templates

...

Sujanya by L3 Networker
  • 2248 Views
  • 3 replies
  • 0 Likes

Resolved! Clientless VPN and Java/Javascript

Hi

 

We have a clientless VPN and app set up to use https on tcp 8443 but the page is not displaying at all. Connectivity has been proven end to end so all the rules are in place.

The app points to a webserver that hosts a portal and uses Javascript.

 

So

...

  • 23835 Posts
  • 112 Subscriptions
Top Liked Authors
Labels