General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 241 Views
  • 0 replies
  • 0 Likes

Global Protect 6.0 Client Windows Authentication

Since upgrading to the 6.0 client every hour, when the client does its config refresh interval, Windows defaults to the Global Protect password sign in option when unlocking the computers rather than what the users are normally using (PIN, Face, Fing

...

Interface Status in Suspended state

I have my production firewalls in HA active/passive mode. My question is if I have suspended the passive firewall, what would be the interface status, would it be down or showing up ? I do understand it will not be forwarding traffic but what would y

...

bambox by L1 Bithead
  • 2900 Views
  • 1 replies
  • 0 Likes

Migration Cisco to PAN

Hello,

I have run a config through the migration tool and I have noticed the following application generate warnings-

 

icmp-  I understand I change this to- ping

ipsec-esp-  I have no idea what this should be changed to?

gre(generic routing encapsulation

...

mamuhopo by L0 Member
  • 1417 Views
  • 1 replies
  • 0 Likes

Resolved! Site-To-Site VPN with payed VPN Providers

I would like to test this hypothetical scenario it is possible :

* I have an account with 3 vpn providers (i.e. NordVpn, PIA, Boleh)

* I would like to create 3 (or more) vpn tunnels (at least one tunnel with each vpn provider)

* I will route different t

...

useridd process is consuming 100% CPU on the PA-5250

PAN-OS is 9.1.10 running on PA-5250.

 

The useridd process is consuming 100% CPU:

 

Tasks: 313 total, 1 running, 309 sleeping, 0 stopped, 3 zombie
%Cpu(s): 2.8 us, 1.5 sy, 0.0 ni, 95.7 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
KiB Mem : 32640128 total, 197252 fre

...

dtran by L4 Transporter
  • 5336 Views
  • 8 replies
  • 0 Likes

Leak a specific route from BGP summarization

Hello All,

 

I have a question related to BGP summarization in a PAN firewall. We currently have summary aggregate advertised to the upstream device. But now we need a leak /32 route to the upstream along with the original summary route. What is the be

...

a-techie by L1 Bithead
  • 2272 Views
  • 4 replies
  • 0 Likes

Panorama PDF Summary reports not providing data

I'm having some issues generating PDF reports in Panorama and after Google didn't help me, I thought it would be worth asking here. We've created some custom reports in the past, had PDF summaries generated, and the reports get sent out on a regular

...

DNS Security

Hello Folks

Does anyone know why I am having problems with DNS Sinkhole when my computers have dynamic DNS, I have spent days testing and I have detected that with fixed DNS I see the log but with dynamic DNS I don't see any log

I have applied the Secu

...

dae_sua by L0 Member
  • 1429 Views
  • 1 replies
  • 0 Likes

MS-Teams issues with disconnections

Hi all,

 

we have some issues with MS-Teams.

Our customers have random disconnections during the cals. In the app they recive error - "bad network quality" and after that they reconnect. Call quality itself is good. In MS console there is no allerts for

...

stef by L2 Linker
  • 2980 Views
  • 1 replies
  • 0 Likes

Resolved! SL Decryption Exclusions

Hi All,
I'm using SSL decryption and if I wanted to have a URL in the exceptions (not decrypted) list, I would add it to a custom url category I created and just add the domain and apply the cutom url to the policy.
But I also noticed that in Device>Ce
...

roma by L2 Linker
  • 1743 Views
  • 1 replies
  • 0 Likes

TCP Source Port Pass Firewall Vulnerability

Hi Team,

 

We are getting below vulnerability in PA NGFW. 

 

Please find the error below, 

 

IP StatusQIDTitleTypeSeverityPortProtocolFQDNSSLCVE IDVendor ReferenceBugtraq IDCVSS BaseCVSS TemporalCVSS3 BaseCVSS3 TemporalThreatImpactSolutionExploitabilityAss...

  • 23624 Posts
  • 107 Subscriptions
Labels