General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

GlobalProtect breaks internet access

hello guys,

Did some of your GP uses complain that they lost the internet after GP connected?

It just happens recently and for some users only.

GP version is 5.2.7

 

Thanks

DongQu by L2 Linker
  • 1531 Views
  • 1 replies
  • 0 Likes

Regarding EDL domain list which is not working.

Hi Team,

 

I have a query where i need to block domain based malicious domains to be blocked with regards to EDL which we have internally.

 

I have called the EDL over the Application/URL category of the policy which has the EDL name which consist of cer

...

GlobalProtect - how to edit the download page

Is it possible to edit the GlobalProtect download page?

On the page where users are prompted to download the 32bit, 64bit, or Mac version version of GP, I would like to add some instructions for the not so savvy user on which version to select and how

...

etnerual by L1 Bithead
  • 10565 Views
  • 14 replies
  • 1 Likes

Remedies for block attacks.

Dear Team,

 

One of our faced some attacks from their wan interface IP. The issue is reported by their ISP team, when we checked in the firewall there are no logs.

 

In customer network, huge number of traffic is going at the same time. The device is 302

...

VishnuPS by L3 Networker
  • 1789 Views
  • 2 replies
  • 0 Likes

Not able to connect AD Domain

hey guys one of my clients is not able to connect in the domain some users are connecting while some are not. The users are in Location A in another city and the Domain server is from another site  I attached B the image ignore.

that is it from the fi

...

Resolved! User's in session table hitting wrong NAT rule

Hi All,

 

I have a client that has several NAT rule's (as per below). The have discovered in the session table 2 IP's from the 10.128.48.0/22 subnet seem to be hitting 'guest_nat' rule below when they should be hitting the 'users_nat' rule below. When

...

BenPrice_0-1628835394873.png
Ben-Price by L4 Transporter
  • 3529 Views
  • 4 replies
  • 0 Likes

Resolved! Certificate Validation for Zoom Recommendation

Hi friend,

 

Can you please all guy , telling me that why zoom is working coz i do not allow policy for this destination Cert address yet?

Thank you.

 

There are URL as the below list:

crl3.digicert.com
crl4.digicert.com
ocsp.digicert.com
certificates.godaddy

...

sunate_h by L1 Bithead
  • 2656 Views
  • 3 replies
  • 0 Likes

TACACS user authentication on WF-500

Hi Team,

The customer has a query about whether if is it possible to configure TACACS user authentication through WF-500. 
The customer has no panorama setup or anything he was able to successfully configure on Palo Alto NGFW but not on WF-500.

 

I re

...

RJ274 by L0 Member
  • 1451 Views
  • 1 replies
  • 0 Likes

Unusual traffic on port 135

Hello, I have been facing an issue where I see lots of traffic toward internal serves on port 135. The source of the traffic is the firewall management IP. Its agentless user-id setup on the firewall. Previously WMI probing is enabled which cause the

...

mshihora by L1 Bithead
  • 2971 Views
  • 3 replies
  • 0 Likes

Unknown Users Detected In User-IP Mapping

Hi All,

I was checking the User-IP mapping in one of the boxes and noticed something which is a mystery to me. I have attached the picture in this discussion. Some of the entries in the output show as Unknown. Any of you know why and how this happens

...

NAble by Not applicable
  • 8461 Views
  • 6 replies
  • 1 Likes

Resolved! Tunnel Monitoring Setup issue

Hello,

 

I need to enable Tunnel Monitoring for S2S VPN between PA and Cisco ISR Router.

Since, we need to hide our local network behind one IP address given by client (172.x.x.x/32) so we have used that IP address as loopback interface.

There are 2 Tunn

...

  • 24197 Posts
  • 100 Subscriptions
Top Liked Authors
Labels