General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 413 Views
  • 0 replies
  • 2 Likes

Palo alto certificate error?

hi all,

 

I am using PA-850 and configure certificate decryption. I am having the problem with this. when I configured to decrypt for any source, client would get the error "ERR_SSL_VERSION_OR_CIPHER_MISMATCH", and could not access to any websites. 

 

Bu

...

Chivas by L2 Linker
  • 6645 Views
  • 9 replies
  • 0 Likes

Palo Alto content apps update 700 800 compatibility 8.0.X

Palo Alto content update 700-800 compatibility 8.0.X


Hello good evening, thanks as always for your support, we have the following case:


-A device firewall version 8.0.X was manually installed a content update of Apps, current version 8563-7374.


-After t

...

Metgatz by L4 Transporter
  • 1513 Views
  • 1 replies
  • 0 Likes

Resolved! How to import Address Objects in CSV to PA Firewall

Dear all,

 

Can some one guide me on how I can import IP address in bulk to PA FW? These days I am getting a huge number of IPs and URLs which needs to be blocked on the Firewall end. For the URLs we can do the import. But how to do the same for IPs?

 

I

...

PAN-OS 10.2 : filter incoming OSPF routes

Hi,

 

We are trying to setup OSPFv2 between a PA-5220 in 10.2 and a Cisco ACI Fabric with "Advanced Routing" enabled.

For now, we are able to advertise routes to our ACI Fabric, we can filter outgoing advertisement but we are unable to filter incoming r

...

EmilienRichard_1-1652344524666.png
EmilienRichard_3-1652344694867.png
EmilienRichard_4-1652344728564.png

Upgrade PA stuck

Hi All,

 

We try to upgrade PA5220 and it has been stuck quite long time. 

We tried to upgrade to 10.1.5h2 from 10.1.0.

 

Any possible reason might cause of it? 

403 Forbidden

I've run into a strange issue with the following website  https://dvir-prod.aws.drivecam.net. When Users attempt to access it they are getting a 403 Forbidden. I'm not seeing an drops in the logs, and the packet captures don't point to anything eithe

...

Remove a site from from Palo Alto's blacklist

My client's site, a Canadian site that prepares school supply kits, edupac.ca was hacked badly a few months ago. But we manually removed all malware files. We abandoned the original infected file base, restoring from backups, and now the code base is

...

Resolved! Palo Alto rejecting one route

I'm having trouble seeing one route in my RIB and FIB. My BGP peer shows it is advertising the route to the Palo Alto, however I see the following when showing the peer at the PAN:

sstadmin@200-PFW-01> show routing protocol bgp peer peer-name DMVPN-Ro

...

Resolved! Security policies not matching traffic

Hello! I am having quite a few strange behaviors from the Palo Alto firewalls. I have a rule for an entire subnet (10.209.82.0/24) to be allowed from inside to outside zones via any port to any IP address yet there is still somehow traffic being deni

...

Resolved! Possiblility of getting locked out of web interface?

Currently, I'm using a local administrator account on the firewall (no Panorama), but I want to configure authentication between it and active directory. I went through Palo's guide for setting up Kerberos (I read that this is preferred over LDAP due

...

JanayE by L0 Member
  • 2285 Views
  • 1 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels