General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Decryption Exclusion methods

From what I can tell there are three methods to exclude traffic from decryption:

 

1) Custom URL Category - Requires a Commit to the device group when adding URLs

2) SSL Decryption Exclusion List - Must be added to each Firewall template and then Commit

...

Resolved! Clarity with wildcards used for custom objects

I'm trying to have a clear understanding of wild cards and ending tokens when using them for custom URL categories. What's the difference in behavior when using *.site.com/  versus   site.com/  ??? The pop-up doesn't seem to mention wild cards in the

...

dgagnon by L1 Bithead
  • 2327 Views
  • 3 replies
  • 0 Likes

PA-5000 SSD replacement

We have 2 PA-5020 working as active/passive. We have dual SSDs configured in RAID and the SSD model on the active and passive device is SSDSA2CW12. We have to replace SSD in active firewall. However the RMA sent is a different model and is of size 24

...

RUNTEAM by L0 Member
  • 1609 Views
  • 1 replies
  • 0 Likes

ECMP Configuration Questions

Hi,

 

New to the board.  I have two WAN circuits going to two separate ISPs.  I would like to run ECMP with weighted round robin over ISP1 & ISP2.  However, I want to verify this can be achieved successfully in my environment.  I have 15-20 VPN connect

...

Resolved! Wildfire Blocking on Informational

On my PAN 3220 which is handling Global Protect I am seeing a lot of Wildfire activity where the verdict for these

file upload is benign, severity only informational but the action is to Block. Any insight as to what might be going on?

 

 

 

 

palomed_1-1643222066995.png
palomed by L3 Networker
  • 1989 Views
  • 1 replies
  • 0 Likes

Resolved! Behaviour of A-URL subscription in PANOS 8.1

Hi all,

Knowing that PAN-DB URL4 license is no longer for sales since last Nov, we have renewed our subscription to A-URL now. After renewal, I can see my other WF, TP licenses have been renewed successfully in Device -> License, however, still  showi

...

Resolved! Failed to Send Email Reports

Hi Team,

 

We have configured, Email Scheduler for the Daily report, We are tested the email severs communication and the email scheduler communication also fine. 

 

But we are not receiving the report, We are receiving the below error in system logs,

 

...

Resolved! RA VPN - SAML testing without affecting production

Is there a way to test SAML authentication for Remote Access without affecting the production environment? In FortiGate I can create multiple independent portals and assign specific users/groups to the portals, but not sure if it is possible in PA. I

...

Block Brave Borwser

Hello,

I have noticed that some of our employees are using a brave browser and can easily open blocked websites like Facebook, crypto, games etc. what's the way to block brave browsers.

 

 

Thanks:

 

Knowledge sharing: Globalprotect troubleshooting/investgation. Split tunnel,Globalprotect app/agent configuration options and etc. to solve issues

Hello to All,

 

 

Just as a note I have issues with my old community account, to this is why I am using new one for now (Edit: the issue is fixed but I will keep this article under this profile).

 

 

I had to use several options in the split tunel options

...

Resolved! JSON parser extractor name with a "-"

I have a JSON list (URL https://ip-ranges.cloud.signiant.com/MediaShuttle) with one part of the JSON path name containing a minus sign ("-"):

 

{ "us-east-1": { "all_ips": [ "3.83.158.71", "3.87.14.184", ...

  • 24034 Posts
  • 102 Subscriptions
Top Liked Authors
Labels