General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 241 Views
  • 0 replies
  • 0 Likes

Resolved! Aged Out in allowed traffic logs

Hi All,

 

I have a doubt regarding aged-out feature in palo alto firewall.

We are getting logs with allowed traffic towards different ports like port 23, 1433 etc.

The device action is allow and in reason aged-out.

 

I want to know that whether the traffic

...

ahmdsmr by L1 Bithead
  • 245138 Views
  • 11 replies
  • 0 Likes

SDWAN Zone Mapping

Trying to make sure I understand this correctly.  For each zone to used within the SDWAN they must be mapped to the pre-defined SDWAN zones.  For the following example would this be the correct method of mapping:

 

Pre-SDWAN zones (same zones at all si

...

Resolved! Can there be fallback authentication for GlobalProtect?

I ran into a scenario that rendered me useless remotely, and I'm wondering if I can configure secondary authentication for GlobalProtect...

I used GP to VPN in remotely.  My GP is set up to authenticate through Active Directory, and it works fine.  I

...

uscit by Not applicable
  • 3661 Views
  • 2 replies
  • 0 Likes

GlobalProtect agent download from direct URL

Hi everyone,

 

Do you know if it's possible to block the download of the globalprotect agent via the direct URL ? 

The goal here is to force users to authenticate in the portal web page to be able to download the agent.

 

Ex. for the 64bit agent :

https://

...

FabienJ by L2 Linker
  • 11095 Views
  • 19 replies
  • 0 Likes

Resolved! Aged Out Traffic

Hi All,

Please help me on this.

If I am doing telnet from one server then telnet is working fine but in firewall I can see the traffic is aged out.
I need to know if any traffic is getting aged out, then it should not allow the traffic but how the tra

...

PPradhan by L1 Bithead
  • 2747 Views
  • 1 replies
  • 0 Likes

Problems to upgrade the OS.

Using  the http portal I´m trying to download the OS version.

I have installed the  9.0.5 version and  trying to reach 10.1.10 h1.  the problem is when I press check now to see the OS versions availables, does not appears nothing new, and in don´t  t

...

PA downloads.jpg

questions to advanced url filtering

Hi all,

I renewed licenses and bought the new adv url subscription which is already activated in my customer portal. However, my firewall still has the legacy url license active.

1) Do I need to import the adv url license manually? What happens to th

...

DVB_Bank by L1 Bithead
  • 2436 Views
  • 3 replies
  • 0 Likes

Auto-commit after upgrade to 10.0.0 fails

Hi all,

 

After upgrading a PA-220 from 9.1.13 to 10.0.0 Data plane is not coming up as auto-commit keeps failing. The only info i got so far is as shown:

I have downgraded the PA back to 9.1.13 and the auto commit is successfull after reboot. However w

...

GnContente_0-1646686454846.png

Upgrade 9.1.0 to 10.0.0 PA220

Hello, im experiencing issues with upgradeing my PA220 from 9.1.x to 10.0.0.

The new software installs, but autocommit fails after upgrade.

 

So i figured i had something in my config that is either changed or not supported in 10.0.0, so i wiped my box

...

  • 23624 Posts
  • 107 Subscriptions
Labels