General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14567 Views
  • 1 replies
  • 4 Likes

What encryption is my SSL connection using?

We're on 9.0.9 and want to turn on the feature allowing users to connect to GlobalProtect using SSL if there is a need.

 

Is there anywhere in the Monitor tab you can look to find what encryption is used for a particular users connection?

 

I read this w

...

Resolved! SNMPv3 read-only permission

hello all,

 

i'm trying to create snmpv3 user account with read-only permission but when i went through the option on GUI there was nothing about specifying the permission whether it's read-only or read & write.

 

i would really appreciate the help.

certificate authentication to establish a site-to-site VPN

Hi everybody,

 

Does anyone knows if it's required by Paloalto that the identification data fields during ike setup be encoded with utf8string? Or is there an incompatibility in Paloalto if these fields are encoded with printablesting?

 

The other end is

...

BigPalo by L4 Transporter
  • 693 Views
  • 1 replies
  • 0 Likes

Rules audit

Hello all,

I am looking for firwall hardening rules auding. what should be in consideration and i have only GUI view privilege's.

Regards

raoali by L0 Member
  • 750 Views
  • 1 replies
  • 0 Likes

Antivirus Policy - Action based on Severity Level

Hey All,

we have Antivirus policy in place and we are seeing many, what we believe are, false positives. Mostly on PDF files. Since number is rather high, reporting each one seems a bit excessive. What they all have in common is their severity which i

...

Resolved! Layer 2 Virtual Wire and Layer 3 in on PAN

The network I inherited has a Cisco ASA and a PAN 3220 operating as

a virtual wire in serial. The NATs and most of the ACLs are at the ASA

while the PAN takes care of other protections such as geo blocking, 

correlation alerting and so on.

{Internet}--[E

...

palomed by L3 Networker
  • 974 Views
  • 1 replies
  • 0 Likes

Type: INNR in session id detail.

Hi team,

 

What does INNR represents in type when looking at the session ID details.

I know that this happens at child session, when parent session ID belongs to the HTTP/2 ID.

If you guys have any idea about what INNR represents, let me know.

 

 

 

 

The Ignite 2020 Agenda is out now!

 

We are weeks away from the world's only digital cybersecurity conference and the Ignite 2020 agenda is out now! To ensure you get the most out of your experience, we put together details of what the event has to offer.

 

For a detailed overview, he

...

jennaqualls by Community Team Member
  • 1449 Views
  • 0 replies
  • 1 Likes

IPSEC VPN intermittent issue

HI,

 

I have IPsec vpn tunnel between Palo alto to cisco asa, tunnel is UP however it disconnect intermittently. Is there any way to check reason behind disconnection in logs? I have applied path monitoring but it show only UP and down logs not exact c

...

Live community email DMARC issue

Notification emails that I normally get from the Live community are failing DMARC checks which is causing them to be quarantined.  Their DKIM appears to be invalid and SPF is also failing.  This has been happening for probably a week or so.  I've bee

...

cchaffee by L1 Bithead
  • 925 Views
  • 1 replies
  • 0 Likes
Top Liked Authors