General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14527 Views
  • 1 replies
  • 4 Likes

User-id with internal portal

Hello community,

I have just started my journey to PA world and spend several days configuring global protect features.

I successfully configured portal for as internal point of connection for Global protect client.

Idea is to provide User-id informatio

...

eronko by L1 Bithead
  • 4960 Views
  • 7 replies
  • 0 Likes

IPSec tunnels - Active/Passive OR Active/Active

Hello Folks,

I'm planning on getting two new Palo Alto firewalls for setting up IPSec tunnels. I think the first tunnel will be a primary tunnel and the second tunnel will be back up. I'm tempted to set up my new firewalls as active/passive HA, to mak

...

Jedi_D by L2 Linker
  • 3175 Views
  • 3 replies
  • 0 Likes

Blacklisting Workstations?

Sorry if this is a dumb question, I'm still a bit new to PA.

 

I've recently had a case where a few workstations cannot access anything beyond the local network. A trace shows that they can reach their default GW, but not the next hop, which is the PA.

...

Luke_R by L2 Linker
  • 1867 Views
  • 4 replies
  • 0 Likes

MineMeld Python3 support?

With Python2 comes to end of life this month, will there be a new version of MineMeld for Python3?   A customer tried to stand up an Ubuntu VM installed MineMeld, but it’s having problems running since MineMeld relies on python2.

rschunk by L2 Linker
  • 2261 Views
  • 0 replies
  • 8 Likes

ntlm exited 4 times must be manually recovered

In our system log of the PAN5250 with PAN OS 8.0.15 i see the following critical message : ntlm exited 4 times must be manually recovered. Does anyone has the same issue or knows how to handle this. I can't find how to manually recover this and where

...

ManuDC by L0 Member
  • 2145 Views
  • 1 replies
  • 1 Likes

Manually Added IP list removed

Hi,

Need help on below.. We have installed Minemeld and created node to manually add IPs to this node. some of the IPs we added are getting removed automatically.. what could be the possible reasons.. ??

 

This is the prototype we have used.

 

Wou

...

Snapshot.png
rkumar3 by L0 Member
  • 996 Views
  • 0 replies
  • 0 Likes

TLS syslog to a cloud based SIEM

Running software version  8.1.10 on this PA firewall.


I have the TLS syslog server profile setup in Configuration type logs and that works (getting config logs).
Then I setup this log forwarder profile that has both TLS syslog and UDP syslog server pro

...

ryupapa by L1 Bithead
  • 1241 Views
  • 3 replies
  • 0 Likes

Resolved! Antivirus Profile and Default Actions

I've been looking at our PA, and I've found that it's detecting viruses being delivered in SMTP traffic. The PA is alerting, but taking no further action.

 

Looking at this guide here, I understand that Palo Alto have this set based on the best recomme

...

Luke_R by L2 Linker
  • 1471 Views
  • 2 replies
  • 0 Likes

Resolved! Cannot apply advanced filters for O365 API feeds

I'm trying to filter out unneeded/unnecessary indicators from our O365 feed, but no matter where I apply the filters I am still receiving all of the indicators.

 

For example, I would like to filter on only indicators available over Express Route, an

...

benime by L1 Bithead
  • 8994 Views
  • 6 replies
  • 0 Likes

Panorama HA Config question

Hi All,

 

Quick question on my new deployment for Panorama. I have a HA pair with unique hostnames and IP addresses with firewall as an active passive pair. The migration steps state the following:

Do not combine the HA firewall pair in to a single temp

...

a.jones by L3 Networker
  • 1122 Views
  • 1 replies
  • 0 Likes

Resolved! New Panorama migration - commit error when completing

Hi All,

 

I have just migrated an active/passive pair of 5220's to Panorama. After completing this following https://docs.paloaltonetworks.com/panorama/8-1/panorama-admin/manage-firewalls/transition-a-firewall-to-panorama-management/migrate-a-firewall-

...

a.jones by L3 Networker
  • 3667 Views
  • 2 replies
  • 0 Likes

Google Play Store Broken When SSL Decrypted

As part of our setup, at an independent school, we decrypt the majority of traffic and set rules to bypass where needed. As part of this, we've struggled to get the Google Play Store to work with decryption turned on. I've used a test phone without d

...

Top Liked Authors