General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 917 Views
  • 1 replies
  • 8 Likes

Block Access to private Gmail but allow corporate

Hi all.

Im looking for a solution to block user access to private gmail accounts but allow a corporate accounts to be used.

I'm aware that there is a solution involing proxy server and X-forwarder.

Is there any other way to do this without dedicated pro

...

Authentication of Users through Captive portal query

Hi Team,

 

We had configured captive portal on the firewall recently.

 

In Authentication policy we had selected source users as any and we are using Active Directory for Authentication.

 

Also we had configured agentless user-id mapping on the firewall an

...

Creating subinterfaces on Active Active HA

Hello ,

 

I have to create 6 Subinterfaces on A/A cluster

 

So i need 3 IP addresses from each VLAN -  1 for FW1  , 1 for FW2 and 1 as Floating IP

 

My question is , do i have to go to each firewall separately to configure the respective IP ?

If yes , what

...

Error while creating a user

Hi All,

 

Facing an error (application icloud-uploading not found) while creating a user on my palo alto 850 using panorama. Attaching the image for better idea. Pls help 

 

IPSEC VPN tunnel getting disconnected.

IPSEC VPN tunnel got disconnected abruptly. We need to find out what could have caused this from the logs and adjust the VPN parameters accordingly.

 

 

From logs i found this.

 

 

ikemgr.log
2021-10-15 03:35:11
2021-10-15 03:35:11.814 +0000 [PNTF]: { 5: }:

...

RPrasad3 by L0 Member
  • 2993 Views
  • 2 replies
  • 0 Likes

Adding a port to existing SSN

Hi - 

 

   I have an existing SSN configured for a device with ports added in Objects, like to add few more ports. what are steps I need follow? Please let me know....Thanks!

Andyz88 by L0 Member
  • 1310 Views
  • 1 replies
  • 0 Likes

problem with userIDAgent in RDP

hello

 

We have a problem with users when they connect in RDP

We found a solution whit this KB:

 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CleBCAS

 

but we have new questions:

1.- Is there a way to know what informati

...

BigPalo by L4 Transporter
  • 1426 Views
  • 1 replies
  • 0 Likes

Resolved! User-ID Agent Connecting Status

Hello team

 

 I am facing an issue with User ID and AD .  It continuously stays on connecting... however it seems that some user is assigning. Can someone help me?

 

10/19/21 10:47:24:139[ Info 2357]: ------------Service is being started------------
10/19

...

Alpalo_0-1634631406756.png
Alpalo_1-1634631536035.png
Alpalo by L3 Networker
  • 2963 Views
  • 1 replies
  • 0 Likes

Override in URL Filtering is not working

Hi Team,

 

One of the domain is not working even after adding that domain in Allow list in override tab under URL Filtering.

 

I have blocked one URL category in that URLFiltering profile however i have added a website/Domain that needs to allow if also

...

SahulH by L3 Networker
  • 9059 Views
  • 8 replies
  • 0 Likes

Connection HTTPS / HTTP and SSH not working

I can't connect via SSH HTTP or HTTPS to my PA-500 firewall .

I can ping it from my network and that's all .

Also , the strange thing it is that from panorama the device is reachable 

I have checked the traffic -> is allow

I have checked management inter

...

Nicu21 by L1 Bithead
  • 4141 Views
  • 5 replies
  • 0 Likes

Resolved! Failed to renew device certificate

Sorry, not sure what board to post this on, as it's my first support post.  Getting an error on my Primary PaloAlto firewall: Failed to renew device certificate.Failed to send request to CSP server.Error: OpenSSL SSL_connect: SSL_ERROR_SYSCALL in con

...

esheldon by L0 Member
  • 4439 Views
  • 2 replies
  • 0 Likes

Question about moving objects...

I have some security rules on a device group using shared addresses groups. I need to move these objects to the device group but I'm not finding an easy way so far. I can't simply move the address group, panorama doesn't allow because rules are using

...

Evahi21 by L1 Bithead
  • 1416 Views
  • 1 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors