General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 461 Views
  • 0 replies
  • 0 Likes

Allowing PIA VPN in home network

Hi all,

Quite new to managing NGFW, please be patient.

I have PA-820 looking after my home network, no domain, few computers, using it to learn more than anything else, but since I have it want to use it fully.

I want my Private Internet Access VPN to a

...

R.Tryba by L1 Bithead
  • 3672 Views
  • 2 replies
  • 0 Likes

Palo Alto Firewall VM

I have installed a Palo Alto Firewall VM trial version. Now whenever I have tired to login / after successful login it is suddenly going to runlevel 0 and shutting down.

PAN-PA-5220 Purchase

Dear All,

 

I am planning to purchase PA firewall 5220 for our Datacentre. and came across below model

I am not mistaken then I need to purchase PAN-PA-5220-DC i(f DC power supply) and PAN-PA-5220-AC ( If AC power supply)

 

However I am clueless for what

...

IPSec Tunnel fails after 1 packet

Hi Guys,

 

We have a number of Palo Alto firewalls at our satellite sites configured in a Mesh VPN.

 

Site A, Site B, and Site C (Internal) all work successfully.

Site C DMZ can establish a tunnel to all the other sites, however as soon as the VPN is used

...

Basic Setup.png

Log Forwarding - multiple instances of same catgory?

In Log Forwarding Profile I have URL Filtering/All Logs going to a log collection server. 
But for URLs of a phishing category I want those to be emailed. I tried to do this by 

creating a second profile match list profile URL Filtering/phishing. But

...

Admin credentials were not changing

Hi
We have 2 PA-850
They are working in HA mode

When i got the handover they gave the admin credentials

The secondary was always active
When i tried to login to the passive one the admin password did't work

At the end i logged in with the initial password

...

Questions) Missing Panorama Log

When creating the Security Policy Rule, 'Log at Session Start/End' was all selected as Actions.

After this, when I check the log in Panorama, only the End Log is visible and the Start Log is not visible.
Also, sometimes this logs are not visible.

 

I

...

Policy Actions.png
future by L1 Bithead
  • 3305 Views
  • 3 replies
  • 0 Likes

SAML Jumpcloud HA Implementation

Hi,

 

i follow the docs here LIVEcommunity - PAN-OS SAML SSO with JumpCloud and Mobile Push MFA - LIVEcommunity - 493684 (paloaltonetworks.com)

it works well with one firewall. When it used to HA active Passive Environtment, it wont work on the passive,

...

URL Filtering Wildard - ? in URL

I have inbound decryption set up for a server and we want to restrict what URLs users can get to.  The website admin tells me that ALL links to the site will contain something similar to the following:

 

https://my.web.server/xxx/yyy/zzz/TEXT_SOMETHING

...

RCurrie by L0 Member
  • 2621 Views
  • 2 replies
  • 0 Likes

Session end reason=resources-unavailable, version 8.1.15.h3

In the traffic log we have found some entries with a session end reason=resources-unavailable, version 8.1.15.h3, however PAN-189468 is not affecting our version only affects version: 

 

9.1.0-9.1.13
10.0-10.0.10
10.1.0-10.1.4

 

adm_(active)> debug datapla

...

Alpalo by L4 Transporter
  • 2884 Views
  • 1 replies
  • 0 Likes

Client certificate for syslog is failing

Im trying to setup a syslog forward from a loggcollector with tls, i get this error in the syslog log on the collector.

 

Certificate subject does not match configured hostname; hostname='scrubbed', certificate='blah.blah.com'


However the certificate ha

...

hbalzac by L3 Networker
  • 3432 Views
  • 1 replies
  • 0 Likes

Technical Specs of M-200

Hi Guys,

Anybody here what is the default RAM and CPU number of a M-200 Panorama server? I've checked the guides and data sheet but I can only see the VM version.

Thanks in advance.

 

Nikko by L1 Bithead
  • 5060 Views
  • 5 replies
  • 0 Likes
  • 24079 Posts
  • 116 Subscriptions
Labels