General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! How to find a URL for session_end_reason eq decrypt-error

I have SSL Decryption and URL Filtering implemented and I see lots of decrypt-errors listed as session_end_reason. Is there a way to see the exact URL that the user was attempting to connect to? That way I can troubleshoot the site and see if an exclusion is needed. Version 9.1.10

exclude a network from static route

Is it possible to exclude a network from static route. For eg I have static route 10.20.0.0/16 to the core-switch.unfortunately my management network (including PA) is 10.20.200.0/24I dont want traffic to 10.20.200.0/24 going to core switch. just exclude that network from the route. As it's directly connected to PA, it should take that path by ...

ceapen01 by L2 Linker
  • 4319 Views
  • 3 replies
  • 0 Likes

Knowledge sharing: IP and user TAG Mappings redistribution for DAG / DUG

Hello to All, I see a lot of questions about redistributing IP and user TAG Mappings from Panorama or a firewall to other firewalls. In version 10 this is possible but in older versions only the user id can be be redistributed and maybe a REST/XML API script is needed to take the mappings(tag and IP or user) from Panorama/Palo Alto and uploa...

LDAP-S Authentification failed (LDAP-S with TLS1 ?)

Hi, while using LDAP-S (port 636) on a PAN Firewall for a connection to an active directory on a Windows Server 2019 I have the problem that the Firewall just can't connect. If I try the "test" command for testing the authentication profile I get this: Authentication to LDAP server at [....] for user "ldap"Egress: [.....]Type of authentication: ...

maximum length of TACACS User ID

We use TACACS+ server for admin authentication. Is there a limit on the length of an ID? I have one that is 40 characters (we use email IDs). Getting an auth-success log message for this user, but then a Critical "create-admin-acct-error" message: Failed to create local user account for admin user: <40 character email>

cdwing by L1 Bithead
  • 3248 Views
  • 2 replies
  • 0 Likes

PRTG monitoring thresholds

Hello, i am implementing PRTG and monitoring my PAs. We can monitor CPU, Disk free and Memory. My question is which should be the thresholds and how to react?

PaloAlto_LiveCommunity.PNG

Authentication Policy for non-HTTP traffic - Remote Access users.

Is possible to use Authentication Policies for non-HTTP traffic (using the Global Protect client), and specifying LDAP authentication? All examples I have found are related to MFA, and I would like to know if it is possible to authenticate RA users using the Local Database, and then add an authentication policy (for specific destinations) using ...

interest in a MineMeld ESXi 6.5 OVA?

I have a working OVA of MineMeld installed on Ubuntu 18.04 server. One of the guys here where I work put in a ton of hours getting it installed and working. Is anyone interested in getting a copy. If so does anyone know a good repository to put it?

Mattk by L2 Linker
  • 2694 Views
  • 1 replies
  • 0 Likes

How do I run multiple commands?

How do I run these commands with one command/automation?? (instead of one by one manually) !taskComplete id=7!taskComplete id=33 input=no!taskComplete id=138 input=Spam!taskComplete id=237 input=Spam/incident_set phishingcategory=Spam incidentcategory="CAT 7 - Non Incident"!closeInvestigation closeReason=Resolved closeNotes=Spam

Stuefen by L0 Member
  • 3022 Views
  • 1 replies
  • 0 Likes

Device State from Multiple Devices

I have a question and I am hoping I am not the first person to have asked it, and that there is a script out there somewhere. I am trying to get the device state from multiple firewalls and need to somehow put it in a script. I do leverage the scheduled config export from Panorama, but that only gets me so far in a complete disaster. If the...

PA220 and IoT Security Policy Recommendations

Hello everyone.I am trying to get the policy recommendations from IoT Security to work.After following the detailed onboarding instructions, everything seems to be properly set-up on both the firewall and the IoT Security portal. All licenses are activated, all logs are being sent to CDL and IoT Security for processing. The issue is; when openin...

LarsPS_0-1642407559759.png
LarsPS_1-1642407652985.png
LarsPS_2-1642407711012.png
LarsPS by L0 Member
  • 2513 Views
  • 1 replies
  • 0 Likes

Alert on Policy Rule Modification

Hello Everybody, I would like to know if there is a possibility to be alerted in case of modification of a rule.For example: if a rule is modified, an email is automatically sent to a specific person Thank you Valentino

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels