Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 139 Views
  • 0 replies
  • 0 Likes

PALO ALTO to AWS site to site VPN not established

Issue:
PALO ALTO to AWS IPsec site to site VPN not able to established.

Situation

Since AWS will provide two VPN tunnel by default.
One of the VPN tunnel is established using the same public IP of PALO ALTO while the other VPN tunnel not able to establis

...

Question for SaaS Security API and Inline

 

Hello, I am SE from Korea.

 

Is there have one admin console for SaaS secure API and inline?

I have both configured, but the console is different.(attached picture)

 

However, Palo Alto Korea said, 'console has been integrated in one'.

how can I

...

CVEs that cannot be found in Palo Alto Advisories

Hi there,

 

Does anyone know what does it mean generally for CVEs that cannot be found on Palo Alto Advisories?

Does it mean Palo Alto is not affected or the advisories has yet to update?

 

A few examples that cannot be found would be the following :

 

CVE-

...

L2 Extensions

Hello People ,

 

We have a situation where in  a Site to Site IPSEC exists between Cisco ASA and PALO ALTO FW 

 

The LAN segment of the Network is behind Cisco ASA . Infact all of the VLANS  are in this LAN Segment which is Behind Cisco ASA .

 

The require

...

Resolved! Your connection is not private (Privacy error)

i am going to access PA firewall on the browser or Global protect its shows Your connection is not private (Privacy error) then I m clicking on proceed to unsafe then it's showing the main page. how to resolve this.

 

 

 

security certificate does not sp

...

Resolved! Skype screensharing uses "u-meeting" app-id

Hi Guys, is it normal that Skype uses this u-meeting app-id every time user uses the screen sharing feature?
I tried to block this app-id and the screen sharing stops working.
Because I only allow app-ids listed on this article: https://knowledgebase.

...

PBF with ECMP Issue

Hello, i have question about PBF Using ECMP.

We have 3 ISP and using ECMP Setting with weight round robin and Symetric Return Settings

ISP A > 200

ISP B > 100

ISP C > 50

 

NAT we set like this

All  User > ISP A

 

Using PBF for some IP Segment

Segment A to ISP

...

No transmit/drop in capture

What are the reasons we don't see transmit or drop in capture and traffic log shows traffic is allowed to/from correct zones, and tcp as age-out in logs. Packets only show in receive/firewall stage. Alos checking flow basic, I do not see the packet a

...

raji_toor by L4 Transporter
  • 5116 Views
  • 4 replies
  • 0 Likes

Resolved! My Website has been tagged as Phishing-- Help!

After several hours, I have been unable to find a way to inquire about our small company's website being tagged as Phishing.  This is going to cost me a large contract with a city municipality. Do I have to buy Palo Alto services to get it removed?

 

S

...

Application and services in security policy rules

Hi I have a question,

 

 

 

Following rule,

 

Application allowed- DNS,SSL,WEB-Browsing

 

Service allowed - TCP port 22

 

I understand DNS, SSL and Web-browsing would be allowed on port 22, but my question is SSH  traffic  would be allowed by this rule as I am

...

jatinsingh06_1-1654734297058.png

Resolved! High dataplane CPU


Last few days we have been experiencing high dp-cpu on all NPC simultaneously, specifically with flow_ctrl. The flow_ctrl process typically shows 3-10% CPU, but all of a sudden all NPC "DP slot x, dp 0 and 1" simultaneously jump to 30..50...80...100%

...

Panorama-shared objects

I am just setting up a panorama with 25 managed firewalls.

How can I have shared objects that are only shared between few firewalls but not all? My perimneter firewalls have huge number of objects which I would not like sharing with other remote firew

...

  • 23591 Posts
  • 107 Subscriptions
Labels