General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Internet is not working

Internet is not working on broadband and ILL after connecting global protect. but if I connect my laptop to a mobile hotspot and connect to global protect then the internet works fine. can you please suggest why not working internet on broadband and ILL after connect global protect

A weird high latency ping issue with PaloAlto running version 8.1.15 hotfix 3

I have this really weird issue and I don't know how to solve it. I noticed it when I first migrating from Checkpoint over to PaloAlto while doing verification in my Development environment. - A PAN 5050 running 8.1.15 hotfix 3. I have a CentOS host (LinuxB) behind the PAN and another CentOS host (LinuxA) outside the PAN. FW rule is any any all...

dtran by L4 Transporter
  • 14687 Views
  • 14 replies
  • 0 Likes

Windows 10/11 CLI commands for checking VPN connection and which portal

I have several applications I run on my computer. They require that i am VPN'ed into my company since they use servers on the corporate network. Is there a way to add a check when launching one of these programs (I'm thinking writing a windows batch file to accommodate this) that will check to see that I am connected to VPN via GlobalProtect a...

SE_Guru by L0 Member
  • 6361 Views
  • 1 replies
  • 0 Likes

Reset MFA- Cortex XDR

Hi all,Want to reset MFA for user who is Managing Cortex XDR admin console. Since am the Super user & Account admin but still unable to find the option to reset MFA. Please help us with the options and steps.

Barakath by L0 Member
  • 5053 Views
  • 2 replies
  • 0 Likes

Resolved! PA 820 Has Validate Export and Reinstall all together under Software

Hi All, Just saw three options (Validate Export and Reinstall) altogether under Device>Software (action tab)for PA 820 for PAN OS 10.2.0 . (I can see other versions also have the same 3 options) (apologies for the blurry pic) Wondering if this is normal or any action is needed as I do not see this on other FW-PA 440 as pictured. Thank you i...

paragkarki143_2-1669333562746.png
paragkarki143_3-1669333641127.png
Pras by L4 Transporter
  • 5903 Views
  • 3 replies
  • 0 Likes

Resolved! Panorama and vm upgrade

Hello all! Im gonna upgrade Panorama + a bunch of vms from 10.1.0 to 10.2.x. On the path up to 10.2.x, do i need to stop at 10.1.8 before upgrading to 10.2.x? Or can i just take a leap from 10.1 to 10.2? Also, running Panorama at 10.2.2-h2 and vm's at 10.1.0, will that cause any issues? Or would that be problem free? I expect to run like this...

Resolved! OS Upgrade from 10.0.10 to 10.1.6 U-Turn NAT Stopped Working

Hello, Originally on our PA-3250's we used Source with Bi-Directional NAT and just added in the trusted zone(s) to the security policy for U-Turn NAT to work, and this worked flawlessly. Now we upgraded to 10.1.6 from 10.0.10 and it stopped working. We were able to get some sites working with a new U-Turn NAT statement as mentioned in the arti...

jprosba by L1 Bithead
  • 4109 Views
  • 2 replies
  • 0 Likes

Downgrade Firewall from 10.0.0 to 9.1.1

Greeting Team! I noticed some problems with a downgrade in my internal lab. So, some information: I want to downgrade from 10.1.7 to 9.1.1 (i need it for the experiment). 1st step i downgrade from 10.1.7 to 10.0.0, everything fine. But, when I want to downgrade from 10.0.0 to 9.1.1 I faced an error with: Upstream NAT not supported on 9.1.1, plea...

wharsapp block

I have blocked WhatsApp on my laptop but not blocking on my mobile. My laptop going to authenticate throw the Active directory. Also, my mobile wifi going to authenticate throw the Active directory but on mobile WhatsApp not going to block please suggest.

Resolved! GLobal Protect Spit Tunnel not restricting domain/applications.

Due to the Void-19 situation and users having to work from home. My company want to reduce bandwidth Utilization by excluding Zoom traffic through global protect. the I.T team has decided to exclude zoom by configuring the "Exclude Client application process name" and adding the path in windows program file for both Win10 and 7. C:\Program Files...

How to find ALL the links related to a website.

Looking for the better idea. User reported xyz.com site is not working, When I look at the firewall logs xyz.com was allowed in firewall. And I filtered the logs with source IP for 5mins time frame and found deny logs for particular IP address 1.1.1.1 I am not sure what is the url for 1.1.1.1, In such case what you will do to find the URL for 1....

Resolved! QoS - Guaranteed bandwith

Hi Team! I'd like to ask about QoS Guaranteed Egress, because I'm not sure I understand the topic well. (used devices PA-220 and VM-100) Here's what I need to do: My branch office bandwith is limited by the ISP to 30Mbit/sec (ethernet1/1 WAN interface). I need to shape traffic to guarantee some bandwith to different kind of traffic classes...

Resolved! How to configure per-client certs on GlobalProtect?

NOTE: the freeware pfsense firewall can configure a working VPN with user passwords and user certs (2FA) inside of 20 MINUTES. With Palo Alto Networks, I'm on WEEK 6. Where I am at:1) I have GlobalProtect working with password auth. (Had to call tech support, who knew what steps were missing from the documentation.)2) I want to have 2FA: so, I s...

dannyman by L2 Linker
  • 14660 Views
  • 14 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels