General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 255 Views
  • 0 replies
  • 1 Likes

Quantifying Global Protect User Experience

I am now seeing about 500-600 Global Protect sessions a day connecting with autoVPN. A problem I 

am running into is reports from our Help Desk of session disconnections. It's hard for them to get

time with the users to grab the tech support bundle and

...

palomed by L3 Networker
  • 1173 Views
  • 0 replies
  • 0 Likes

Resolved! Upgrading PANs in Serial Question

I have two PAN 3220s operating as Virtual Wires behind a pair of ASA 5525s. Normally in upgrading a pair of PANs you upgrade the standby, then suspend the primary (secondary takes over), upgrade the primary. Repeat as necessary to get to your target

...

palomed by L3 Networker
  • 1932 Views
  • 2 replies
  • 0 Likes

Resolved! Licensing in active passive cluster

Hi there,

 

we plan to replace an old firewall cluster against an new one from PA. It will be an active-passive cluster of 2 PA-850 boxes, we plan to use threat prevention + dns security license.

There is only one box active, the other one is on standby

...

Netzer by L2 Linker
  • 3622 Views
  • 1 replies
  • 0 Likes

Advanced URL License not showing in Panorama?

I recently renewed some licensing on firewalls.  The URL Filtering subscription changed to Advanced URL Filtering.  On the firewall, under licensing, everything shows fine.

 

In Panorama, for those firewalls, I noticed after doing a refresh, Pano shows

...

MikeC_0-1640794406956.png

Restrict Google Domain login

Hello,

I have been using a header insertion to restrict login to an approved list of Google Domains for a couple of years now. However, I have now encountered an issue and was wondering if anyone else had a similar experience or has any idea what to d

...

Gp version 5.2.10 upgradation issue

In global protect portal  App>> Transparently setting we have done. but after this setting Global protect client version not updated automatically now 15 days passed .is there any issue in 5.2.10 version of Global Protect.   

SurajN by L2 Linker
  • 1300 Views
  • 0 replies
  • 0 Likes

flow_fpga_ingress_exception_err and high latency

Recently deployed several PA-5250s Running 10.1.3 and there is a issue that randomly comes and goes.

Latency for traffic going through the firewalls spikes to 100-500ms. I was able to capture one thing that looked peculiar and that was flow_fpga_ingre

...

category malware with action allowed

Hi,

we use Splunk.

 

We tried following searchstring: http_category=malware | timechart count BY vendor_action

 

We find out that we get back action allowed with category malware.

Is there a failure in the search? The action in our URL security profi

...

VM series log not detected in Azure Sentinel

Here’s the problem statement:

 

1] If Syslog UDP 514 is configured in PAN FW on-prem and vm-series, There were missing logs in AZ Sentinel, Incomplete logs is experienced and there were packets fragmentation.

2] MS Sentinel support recommended to change

...

Resolved! Allow single user to bypass MFA

Hi All,

 

I would like to access Global Protect for myself using different profile to access one of our resources subnet 10.21.xx.xx.

 

I want to access without having to go through 2FA. Any idea for it? is it possible?

 

Do we need to create another gatew

...

  • 23627 Posts
  • 107 Subscriptions
Top Liked Authors
Labels