General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 777 Views
  • 0 replies
  • 0 Likes

SSL-decrypt resources needed

Hi,

 

We are enabling SSL-decrypt for several categories in our FW. We realised that the CPU and memory increased since this config, but its so far about the maximum in datasheet for PA3050. How can we know the SSL decypt consumes and try to have any r

...

BigPalo by L4 Transporter
  • 2658 Views
  • 3 replies
  • 0 Likes

An interesting POC using Palos

Just watched an interesting way of hiding C2 traffic which bypasses Palos in the demonstration. Would be good to know if there is solution to capture this.

https://www.youtube.com/watch?v=eVr0kKdgM2I

raji_toor by L4 Transporter
  • 2343 Views
  • 4 replies
  • 0 Likes

Traffic Deny due to DNS?

Hello,

 

I was given a chunk of IP addresses and domains/urls to update into an existing blacklist on the firewall.  I go to objects and create ip-netmask for ip addresses and FQDN objects for domains/urls. Some of the domains i received come in the fo

...

dnserror.png
Kenchh by L0 Member
  • 2819 Views
  • 1 replies
  • 0 Likes

Rendezvous Point query

Hi Team,

 

We have already used one interface for RP can we use one more interface to configure RP ??

please find below snapshor for reference

 

 

GideonKonga_0-1638293621158.png

Commit-All to Specific Device Using API in Powershell

I am using Powershell to make API requests to Panorama which cause various commands to be executed on specific NGFWs. I would like to do a commit-all to a specific firewall, not the entire DG/template stack. The documentation Commit-All (paloaltonetw

...

Have: old PA-200. Need: firmware 5.x

Hi,

I bought a PA-200 new many years ago but support long expired on it.  I've been using it simply as a home office firewall since then and have never upgraded PANOS so it's at 4.1.6.  Honestly it's running fine, but the old SSL version is forcing me

...

user id group mapping

 

Hello I have several questions to ask you about the user ID.

1)We say that the LDAP does not map between the ip and the user, so who does the mapping between the ip and the user name?

 

 

2)  then, when we configure the mapping of group. I do not unders

...

Sarou22 by L2 Linker
  • 3853 Views
  • 6 replies
  • 0 Likes

Resolved! HIP Notification question

Hi,

 

A question regarding HIP notifications.

 

I have enabled HIP notifications for GP clients connecting in and they trigger when a violation of the HIP profile is detected e.g. firewall turned off, but just wanted to clarify something in the Palo docu

...

BenPrice_0-1637729906099.png
BenPrice_1-1637729949128.png
Ben-Price by L4 Transporter
  • 9320 Views
  • 7 replies
  • 0 Likes

XML output command of ARP managment in 9.1.11

Hello ,

 

I have multiple firewall with running PAN-OS 9.1.11 and above version.

i am facing an issue to generate XML output command of ARP managment.

 

When i run the ARP managment command to set XML output on i am getting the below error:-

 

admin@PA-VM-P

...

License issue

Hello ,

 

we have a customer who renewed the premium partner support

 

When we go to License tab , we can see Premium Partner support renewed 

 

But when i go to Support Tab, it still shows date of 2020

 

Is it cosmetic ?  We already tried to fetch the licen

...

how to configure gre over ipsec?

Anybody know how to configure gre over ipsec ?

from the 9.0,pa support gre tunnel and only one word describe about this feature.

  • (Optional) Select Add GRE Encapsulation to enable GRE over IPSec.
    Add GRE encapsulation in cases where the remote endpoint r
...

Felixcao by L3 Networker
  • 3660 Views
  • 3 replies
  • 0 Likes
  • 23986 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Authors
Labels