General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 543 Views
  • 1 replies
  • 4 Likes

PANOS 10.01 PA220 Sloooooow

Hello Experts, 

 

any notice the above, since deploying 10 and 10.1 I have noticed a significant slowing of the PA220 is this now expected behaviour or a bug. Its kinda made it really difficult to work on a 220 now. 

 

Darren

BizBo by L2 Linker
  • 1212 Views
  • 2 replies
  • 0 Likes

Minemeld Vulnerabilities

After downloading and building minemeld from https://github.com/PaloAltoNetworks/minemeld-docker ...

Our https://anchore.com/ scanning engine has detected several vulnerabilities...

 

Amongst other obvious concerns such as;

 

1. Why is it build with

...

Enable FTP and FTPS for Active/Passive?

Hello Folks,

 

We have a CrushFTP server installed on a server behind our PA 3020 PANOS: 7.1.14, SSL decrypt not enabled.

Security Rule:

 

NAT Rule:

 

Trying to figure out why Active and Passive with FTP over TLS (SSL) will not retrieve the directory listin

...

FTP_rule.jpg
FTP_NAT_rule.jpg
Active_FTP.jpg
Active_FTPS.jpg
OMatlock by L4 Transporter
  • 7040 Views
  • 5 replies
  • 2 Likes

forbidden

Hi,

site says forbidden while browsing the site , when I bypass there is no issue .

2)When I am uploading files  to web site it fails ,  when by pass it works 

 

Any hint to the root cause of the problem 

 

Thanks

simsim by L4 Transporter
  • 656 Views
  • 1 replies
  • 0 Likes

Resolved! VPN Proxies

I have a VPN tunnel which is up and running.  In the tunnel, I have 2 proxyID's which have the same local address but different remote addresses.

I can only get 1 proxyid to connect. 

As an example, I current have proxyID1 connected and I can ping the

...

Resolved! DNS Security service

Hi All.

Can any body know if the DNS Security Services have possible to enable and subscribe on Virtual Wire deployment?

Thaks

 

Rojaba by L0 Member
  • 673 Views
  • 1 replies
  • 0 Likes

IPSec Tunnels BGP Fluctuation Frequently

Hi All, 

 

We have 04 IPSec VPN tunnels created on our PA FW with Public Cloud configured with BGP. (All these 04 Tunnels are created over single Internet link). All 04 peering IP of public cloud belongs to same region.

 

Pl note that these tunnels are i

...

Jimmy20 by L2 Linker
  • 714 Views
  • 1 replies
  • 0 Likes

iOS Global Protect Always-On VPN ?

We have:

 

MDM: Filewave

iOS: 12+

GP: 5+

 

When an iPad is rebooted, GP doesn't auto reconnect & must manually be opened/connected again.  Any ideas how to get it to actually always auto reconnect?  We really only care about the user identification being a

...

Resolved! User identification in security policy

Hello,

 

I have a problem with configuration of user identification in security policy. What is the target: for some users who login to VPN via GlobalProtect I would like to limit them to some specific subnet. Users login to VPN using their Active Dire

...

Resolved! Need to Disable TLS 1.0 & 1.1 for port TCP-3978

Can someone suggest on how can we disable TLS 1.0 & 1.1 for port TCP-3978

 

Description: The remote service accepts connections encrypted using TLS 1.0. TLS 1.0 has a number of cryptographic design flaws. Modern impleme
ntations of TLS 1.0 mitigate thes

...

Error while disabling tunnel.

Hi All,

We are running PA with firmware 9.0.4

 

Getting errors while "disabling" not required/unsed IPSec tunnel.

 

Error: tunnel interface tunnel.50 encap interface is not set.

Error: parse tunnel member failed.

Error: error parse qos tunnel group

Error: er

...

Jimmy20 by L2 Linker
  • 1423 Views
  • 1 replies
  • 0 Likes
Top Solution Authors