General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 278 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3603 Views
  • 2 replies
  • 14 Likes

Can get a User-ID table via XML-API on Windows UID agent?

Hi everyone, 

 

I can get a User-ID table via XML-API on a firewall for checking that the user authenticated and do something such as logout a user.

I need to use a UID agent for doing it. Can get a User-ID table via XML-API on Windows UID agent?

 

I have

...

Tinkani by L1 Bithead
  • 1587 Views
  • 1 replies
  • 0 Likes

Panorama with virtual system

The issue is when we try to connect the firewall “with four virtual systems” to panorama, not all zones imported on the panorama.

Zones working fine with two virtual systems and not imported all zones on the other.

If we try to create it manually on pa

...

Firewall syslog timezone

From my understanding, the timestamp within syslog messages from the Palo Alto firewall are based on the time zone configured on the firewall. However, the syslog message does not include what that time zone is, which can cause problems for SIEMs and

...

HIP profiles for internal outbound traffic

Hello Community, I hope you are well. I need to apply our security posture for internal user browsing.

 

I would like to know if it is possible to apply HIP profiles for internal users (not vpn ssl connections). Just installing Globalprotect on the wor

...

Resolved! Problem with Panorama pushed updates

Hello all,

 

i have problems with the security policy push.

When i try to push them the commits fails with :

 

  • Validation Error:
  • rulebase -> security -> rules -> ms-ad -> destination 'offices-subnet' is not an allowed keyword
  • rulebase -> security -> r
...

stef by L2 Linker
  • 10143 Views
  • 10 replies
  • 0 Likes

Resolved! Palo Alto SSL Decryption Question

Hi All,

 

I'm looking to subject ssl traffic to my security profiles, but to do this, I believe I am understanding that for inbound traffic from the outside, you need to import the same certificate and key from each of your protected servers on the ins

...

Dual Boot Detected

Hi All,

    Any idea why PA firewall does generate the below error? 

domain: 1
receive_time: 2020/06/25 08:34:48
serial:
seqno: 
actionflags: 0x0
type: SYSTEM
subtype: general
config_ver: 0
time_generated: 2020/06/25 08:28:13
dg_hier_level_1: 0
dg_hier_level_2:

...

Resolved! Logging to Panorama and Splunk

I am standing up Panorama and not sure where to send logs. I currently have my firewalls sending logs to Splunk via a syslog server, and I want to keep getting logs into Splunk. Is there a best practice or recommended config?

 

Option 1. Send firewall

...

Slow Google searches on 9.0

Recently we changed to 9.0 code.   We are running decryption on our firewalls.   I've seen some very slow google searches recently, and a few errors when searching all while  using chrome.  Eventually the page will load the search if I wait long enou

...

Sec101 by L4 Transporter
  • 10721 Views
  • 23 replies
  • 0 Likes

Resolved! Delay on initial connection with globalprotect session

I have a vm-100 on azure. I configured it to route all traffic from globalprotect client, no split tunnel.

 

I noticed that when I browse a site, the initial connection takes about 5 to 10 second to show the first page but it's fine after the initial c

...

Overlapping destination subnets over IPSEC

Hello,

I have following scenario. I have a two IPSEC connections to Oracle Cloud. The destination IP range is the same on both networks.

IPSEC A - dest IP range 10.1.6.0/24, security zone Oracle1

IPSEC B - dest IP range 10.1.6.0/24, security zone Oracle

...

General - PA 5220

Hi

 

I have in logs this message

Type - SYSTEM

Subsystem - General

opaque: Number of hints on disk has exceeded 5000 due to log forward failures.

 

Someone may have had this error ?

 

Mr.P

 

Resolved! VPN remote desktop connection deep inspection

Hello Bros,

              In our deployment we had to give access for few employees to ms-rdp to their work PCs to do remote work staff.

recently we started to receive some complains regarding connections for all rdp's and other collaboration services

...

File blocking not happening

Hi team,

 

I have a file blocking profile for upload direction for all type of applications and file types.

I am using Decryption as well, Only in Google Drive File blocking is happening in so weird manner.

Pdf's and jpegs are getting blocking if only th

...

  • 24175 Posts
  • 100 Subscriptions
Top Liked Authors
Labels