General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 520 Views
  • 1 replies
  • 4 Likes

Resolved! SSH SSL Issues Reported From Vulnerability Assessment

The results of a vulnerability assessment is reporting the following issues with PAN firewall with version 7.1.6.  Is this due to the settings in the decryption profile?  Any direction would be helpful.  Thank you.

 

CVENAMEDESCRIPTIONSOLUTION SSL Medi...

almay by L2 Linker
  • 7732 Views
  • 2 replies
  • 0 Likes

DHS AIS Miner

Has anyone gotted the DHS AIS Miner working in MineMeld? We have an account with DHS and I configured the Miner with our subscription id as well as our certs. The miner shows all green (see attached screen-shtot), but I am not getting any indicators.

...

Jon_Irish by L1 Bithead
  • 11480 Views
  • 14 replies
  • 0 Likes

Global protect User mapping.

Hi Team,

 

One of our customer wants to restrict "per user-per system" basis.

In Global Protect Clients, one user is able to connect through multiple end devices.
Can we able to restrict i.e one user should be able to connect through only one end devices
...

MSTP and instances

HI

 

So my reading says to me

don't put vlans on instance 0 .. seems like a good idea.

 

now how many instances can I have ?

cause I am thinking an instance is like a scoping tool.

 

I would want to put my WAN ports in an instance why would I want my STP re

...

FIPS 140 and CC enabling

Couple of questions on FIPS.

 

  1. When you enable FIPS140 on a Palo it wipes the device. Can you just reload your last saved?
  2. Can a FIPS140 enabled device talk to a non-FIPS device over an ipsec tunnel provided the cyphers are compatible?
  3. FIPS disables PAP.
...

ALL SERVICES FATAL ERROR

Hi all,

 

I'm deploying minemeld on ubuntu 18.04.4LTS.

I have all services on fatal error state.

minemeld-engine FATAL Exited too quickly (process log may have details) minemeld-supervisord-listener FATAL Exited too quickl...

Decryption Certificate.

Hi Team,

 

I have created certificate which is used for Decryption purpose. I have installed in Windows and Mac and its working.

How do i install that in linux (Ubuntu or Kali ) ??

Please share your insights .

 

 

 

 

 

commit issues

Anyone else getting:

 

Error: Error reading tom data
failed to handle CONFIG_UPDATE_START
(Module: device)
Commit failed

 

Issue been logged with Palo for a month now and still not solved

 

I was running 8.0.3 when it happen and rolled back to 8.0.1 and still

...

Policy rules organization

hello Everyone hope everything is doing well.

 

questions for the experts on palo

i have 260 rules on my palo alto environment and they are subdivided in zones and i would like to make things more organized on my rules  .

question is the rules more high

...

publishing a site website service with ssl decryption

I have an internal server which i want to publish its service to public and need to do ssl decryption, does that means i need to do "inbound ssl decryption"?

and if so, as the website is natted from outside to inside, in the decryption rule in the des

...

chuckles by L2 Linker
  • 1996 Views
  • 3 replies
  • 0 Likes

Release Notes in GUI

Anyone know what's up with the release notes links in PAN-OS or Panorama GUI?  Some of them are taking me to an XML response page and there is apparently an email circulating on REN-ISAC that the GlobalProtect links for 5.1.2 download a *.solitaireth

...

jsalmans by L4 Transporter
  • 1056 Views
  • 1 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors