Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 160 Views
  • 0 replies
  • 0 Likes

Resolved! User's in session table hitting wrong NAT rule

Hi All,

 

I have a client that has several NAT rule's (as per below). The have discovered in the session table 2 IP's from the 10.128.48.0/22 subnet seem to be hitting 'guest_nat' rule below when they should be hitting the 'users_nat' rule below. When

...

BenPrice_0-1628835394873.png
Ben-Price by L4 Transporter
  • 4228 Views
  • 4 replies
  • 0 Likes

Resolved! Certificate Validation for Zoom Recommendation

Hi friend,

 

Can you please all guy , telling me that why zoom is working coz i do not allow policy for this destination Cert address yet?

Thank you.

 

There are URL as the below list:

crl3.digicert.com
crl4.digicert.com
ocsp.digicert.com
certificates.godaddy

...

sunate_h by L1 Bithead
  • 3122 Views
  • 3 replies
  • 0 Likes

TACACS user authentication on WF-500

Hi Team,

The customer has a query about whether if is it possible to configure TACACS user authentication through WF-500. 
The customer has no panorama setup or anything he was able to successfully configure on Palo Alto NGFW but not on WF-500.

 

I re

...

RJ274 by L0 Member
  • 1628 Views
  • 1 replies
  • 0 Likes

Unusual traffic on port 135

Hello, I have been facing an issue where I see lots of traffic toward internal serves on port 135. The source of the traffic is the firewall management IP. Its agentless user-id setup on the firewall. Previously WMI probing is enabled which cause the

...

mshihora by L1 Bithead
  • 3544 Views
  • 3 replies
  • 0 Likes

Unknown Users Detected In User-IP Mapping

Hi All,

I was checking the User-IP mapping in one of the boxes and noticed something which is a mystery to me. I have attached the picture in this discussion. Some of the entries in the output show as Unknown. Any of you know why and how this happens

...

NAble by Not applicable
  • 9329 Views
  • 6 replies
  • 1 Likes

Resolved! Tunnel Monitoring Setup issue

Hello,

 

I need to enable Tunnel Monitoring for S2S VPN between PA and Cisco ISR Router.

Since, we need to hide our local network behind one IP address given by client (172.x.x.x/32) so we have used that IP address as loopback interface.

There are 2 Tunn

...

TACACS user authentication in WF-500

Can we configure TACACS sever profile in WF-500?

 

So that we will provide TACACS user authentication to login into WF-500.

 

If it is possible, please share configuration steps or article for the same.

Traffic issue on the Palo Alto(zone-to-zone)

Team,

On our Palo's we have a vsys defined and on this vsys we have 2 zones configured. ...... (say Trust zone and untrust zone.)

 

We have a server in the trust zone which need to monitor the interface allocated to the untrust zone.

This does not happen

...

nson2139 by L3 Networker
  • 3616 Views
  • 3 replies
  • 0 Likes

Office 365 Dynamic List

Is there any way to use the Office365 dynamic URL?

https://endpoints.office.com/endpoints/worldwide?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7

which contains IPv4, IPv6 and domain and having update every day. 

URL and Threat Licenses

I have recently ordered URL, Threat and 3 yr support for 7 PA-220's. The main S/N we are using for a test application did not get a license ordered, (oversight on my part). Can I use one of the new licenses from another S/N PA-220 to upgrade and test

...

  • 23597 Posts
  • 107 Subscriptions
Top Liked Authors
Labels