General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1205 Views
  • 0 replies
  • 0 Likes

Resolved! Firewall replacement procedures

We are planning to replace PA-3260 with PA-3430, can anyone suggest the procedures and prerequisites to be followed before replacing the firewalls.

Currently the firewalls are managed from Panorama.

Cannot block theoxymoron.xyz

Hello, I have been trying to block the site theoxymoron.xyz but can not get it to block.  I have tried URL filtering with many different versions of the URL as well as blocking the IP addresses for the site, neither of which worked for me.  We do not

...

Stuck in a customer support loop

I'm trying to setup my PA-220 to use the AIOps and need to login into the Palo Alto customer support portal.  I have not logged in for a long time, but when I use the account associated with my device, it tells me "Unable to sign in".  Trying forgot

...

3dmaxer by L0 Member
  • 1842 Views
  • 2 replies
  • 0 Likes

Montioring DHCP with ManageEngine

Hello all.  We are demoing ManageEngine's OpUtils which advertises it can monitor Palo Alto DHCP scopes.  I have it connecting to one of our palos via Web API credentials just fine, it just doesnt return any data about the DHCP that is configured.  I

...

Resolved! Two Static Route - same destination, Same metric

Two Static Route - same destination, Same metric

 

Hello, good afternoon, thank you very much for your time, collaboration, time and suggestions.

 

Thinking in an environment where you have two routes to the same segment, example a pair of static rou

...

Metgatz by L4 Transporter
  • 7598 Views
  • 2 replies
  • 0 Likes

Self Signed Certificate for GlobalProtect VPN

Hello All!

 

We are having an issue regarding the Palo self-signed certificates.

As suggested without 3rd party paid certificate we are using a self signed CA and a certi issued by the CA.

(added to the proper ssl/tls service profile)

 

But the vpn portal

...

DNS Security Logging PAN-OS 9.1

Firewalls with DNS Security enabled and working in PAN-OS 9.1 logs are not visible in AIOps DNS Security (Activity:Dashboards > DNS Security - View all DNS Requests).  How to ensure firewalls and Panorama are properly configured and log data is reach

...

PAN and intermediate CAs

Last couple of days I've had quite a few cases where I had to manually add intermediate CAs as a Trusted Root CA in order for decryption to work (for customers blocking untrusted CAs already on firewall).

 

These are quite well known intermediate CAs

...

Resolved! Multiple ISPs with Path Monitoring

Hi All

 

Need a sanity check.  When deploying multiple ISPs using path monitoring, instead of policy based forwarding,  should the 2nd ISP become unreachable?  It makes sense that it does, but it wasn't mentioned in Palo article about it

 

Setup woul

...

SCP Export Error PanOS 10.2

Hello everybody!

 

It appears that PanOS 10.2 has the ability to export Software.  However, I'm receiving the following error when attempting to do so.

 

For reference, I am attempting to do this from Panorama.  The scheduled config export to the sa

...

schroedera_0-1666884171644.png

Highlight Unused Rules Option - Missing

Hi,

 

We have multiple 'Admin Roles' setup and we have noticed the 'Highlight Unused Rules' tick box at the bottom on the policies page is missing.

 

What permission am i missing to allow this?

 

 



Please note you are posting a public message where co...

ElliotM by L2 Linker
  • 2539 Views
  • 1 replies
  • 0 Likes

SSO Error when Accessing KB or Supportcases Portal

Hello all,

 

Recently (these two weeks) I have encountered SSO Error when browsing to KB & Support Case pages which I don't have such issue before.


https://knowledgebase.paloaltonetworks.com/

 

https://supportcases.paloaltonetworks.com/_nc_external/i

...

SeanDeHarris_0-1657263836839.png

Captive portal SSL decryption policy requirement

Hi,

 

PAN has the following document [1] which says you need to have SSL decryption in order to redirect SSL pages to captive portal.

To me it doesn't seem to be accurate. Response page [2] workaround seems to be doing the same i.e without having an SSL

...

  • 24173 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels