This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 271 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3597 Views
  • 2 replies
  • 14 Likes

SNI for GlobalProtect

Hi,

 

is there a way for globalprotect to only listen to a specific URL and forward all other FQDNs?

I already have webservers behind the palo listening to specific SNIs and would like to keep it this way.

 

CLIq by L3 Networker
  • 4666 Views
  • 3 replies
  • 0 Likes

OSPF Adjacency Issues

We've got a Cisco 7301 routers that forms OSPF adjacencies with an HA pair of 5020 firewalls.  Recently I swapped this router out with a different router with the same IPs but different configs to test a new WAN connection.  OSPF forms up just fine w

...

aglej by Not applicable
  • 13108 Views
  • 14 replies
  • 0 Likes

Resolved! DNS Proxy listen to broadcast?

Hello!
I have a cisco wlan accesspoint (at remote site), which lost connection to central wlan-controller. Due to a mistake this ap still has static ip-address, so it does not send DHCP-discover/requests when it is started. But it sends DNS-requests s

...

ChrisCon by L2 Linker
  • 3688 Views
  • 7 replies
  • 0 Likes

show log traffic equal api or cli (ssh and scp or api)

Hi

i am looking and recover on a machine1    example: "show log traffic log   (ip source destination port ect ..)

Machine1---> scp admin@palo   ---->show log traffic direction equal etc ...   export ..

 

or

 

https://palo/api/?type=op&cmd=<show><log traffi

...

axelfa by L2 Linker
  • 2028 Views
  • 2 replies
  • 0 Likes

Resolved! Help understanding application dependency tree

Hello all!   I am trying to find more information about the attached image - 

specifically when selecting an application in the process of creating a security policy, some applications appear to have dependency trees (shown) 

In this example of SNMP, 

S

...

Resolved! PAN 3220 10Gbps SFP compatibility?

Is it possible to use 10Gbps MM optics transceivers or copper in the PAN 3220?
I want to get 2Gbps to my edge and wondering if there's an option other than

bonding two 1Gbps ports. Thank you. 

DHCP stuck at offer

Hi Team,

 

I have configured DHCP server on PA.

It is working fine.

I check GUI and CLI  it shows one IP is sitting at offer

 

show dhcp server lease interface ethernet1/12

interface: "ethernet1/12" id: 75
Allocated IPs: 4, Total number of IPs in pool: 155.

...

Resolved! SCCM app deploy issue

I am working on testing improvements to our rule sets by breaking the rules into app groups as opposed to just allow all.

Pretty much everything is working fine except for OSD deployment via SCCM. In particular the O365 click to run installer. The dep

...

Jamesy by L2 Linker
  • 3120 Views
  • 2 replies
  • 0 Likes

Palo Alto and CIsco Jabber isssues with Global Protect

Hi,

 

We are having issues with cisco jabber using Global Protect.Clients reported that the jabber status (online/offline) is wrong so they have issue calling. The rule VPN-SSL zone to inside is any/any, so no restriction. Looking in pcap we can not se

...

BigPalo by L4 Transporter
  • 2405 Views
  • 1 replies
  • 0 Likes

IPSec Crypto / browsing issue?

Hi All,

 

I working on some firewalls and saw the GlobalProtect IPSec crypto profile but was using aes-128-cbc, I decided to change it to use aes-128-gcm, to take advantages of gcm benefits. 

Since that change, I have a user who is experiencing issues.

...

Digital Events are Coming to LIVEcommunity!

Hi everyone,

 

Yesterday we announced the launch of digital events on LIVEcommunity and introduced our first Ask Me Anything (AMA) event — a Q&A session focused on a specific topic where you can connect with experts! 

 

The first AMA event is taking

...

jdelio by L7 Applicator
  • 2993 Views
  • 3 replies
  • 5 Likes
  • 24173 Posts
  • 100 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks