General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 1975 Views
  • 1 replies
  • 11 Likes

Demisto Mail Sender Integration

Hello,

I am using Demisto community edition and i want to integrate it with "SMTP" in order to be able to send e-mails, but i couldn't and encountred the following error message. "(-1, 'E Fatal error: tls_start_servertls() failed') (85)"

 

So I am askin

...

mail error.png
ilyes23i by L0 Member
  • 1539 Views
  • 1 replies
  • 0 Likes

Multi-vsys for 3250

A Virtual Systems license is required to support multiple virtual systems on PA-3200 Series firewalls, and to create more than the base number of virtual systems supported on a platform.

PA-3250 support bellow things-
Base virtual systems1
Max virtual s

...

Demisto Mail Sender Integration

Hello,

I am using Demisto community edition and i want to integrate it with "SMTP" in order to be able to send e-mails, but i couldn't and encountred the following error message. "(-1, 'E Fatal error: tls_start_servertls() failed') (85)
"

 

So I am askin

...

mail error.png
ilyes23i by L0 Member
  • 1260 Views
  • 0 replies
  • 0 Likes

TLS 1.3 Encrypted SNI No-Decrypt URL Categories

In non decrypted tls 1.3 traffic, how is the firewall in 10.0 seeing the URL that a user requests and how is it enforcing that category?  I've read that tls1.3 encrypts the SNI field, which from my understanding, is the primary way the palo firewalls

...

Sec101 by L4 Transporter
  • 3655 Views
  • 2 replies
  • 0 Likes

Panorama VM running on ESXi 6.7?

Dear community,

 

I had a Panorama VM running Pan-OS 8.1 without any issue on top of VMware ESXi 6.7, after upgrading to 9.0.4 the host is rebooting the VM from time to time with the following error log:

"..........reset by vSphere HA. Reason: VMware To

...

Carracido by L3 Networker
  • 3316 Views
  • 2 replies
  • 0 Likes

User-ID Based Overide

Hello Everyone, 

 

We are looking a solution in a case wherein PAN-OS firewall are deployed with only USER-ID based policies for different group of orgranizations. 

Now everyhintg is working as expected but IT Engineers are getting trouble in Installing

...

Global Protect with Client Certificate Authentication

Hi all,

can somebody tell me if there is a manual or howto,
which describes in detail how to confígure this.

I read the "Quick Start Guide GP" and this thread
https://live.paloaltonetworks.com/message/7126

But I'm not getting it t work. When I connect to

...

indevis by L2 Linker
  • 3141 Views
  • 2 replies
  • 0 Likes

Resolved! PA-VM license

Hello,
I am a PA beginner. I have pratice a lab for global protect and configuration finished, but it seem need license. The message has 「Warning: GlobalProtect Gateway License is invalid.」
My PA is VM, software version is 8.0.0 , globalprotect agent i

...

Chin123 by L1 Bithead
  • 2396 Views
  • 3 replies
  • 0 Likes

Configure Tacacs+ server on linux

Hello,

 

i am configuring tacacs+ on VM-300, but there is no configure option "Device - Access Domain", so i think the VSA should be added into tacacs+ server config. These VSA are mention here,

 

https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin

...