General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Disable ciphers

Hi guys,

 

Would like to know how to disable the following ciphers:

 

TLS_DHE_RSA_WITH_AES_256_CBC_SHA
TLS_DHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128

...

JingKai by L1 Bithead
  • 641 Views
  • 2 replies
  • 0 Likes

What is the range for sequence number in userID logs ?

What is the seqno field in userID logs(below link) ? What is the range for that? Will it rollover when it reaches the maximum ?

 

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/monitoring/use-syslog-for-monitoring/sysl...

 

User-ID 

saswins by L1 Bithead
  • 294 Views
  • 0 replies
  • 0 Likes

UserID Monitored server (WinRM-HTTP) gets Kerberos error.

Hi,

We tried this: https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/user-id/map-ip-addresses-to-users/configure-server-monitoring-using-winrm

It seems like config is OK but we are getting "kerberos error" in status ofr this server monitored. W

...

BigPalo by L4 Transporter
  • 2987 Views
  • 6 replies
  • 0 Likes

10.0.10 code bug? LDAP auth server is up !!!

Since upgrading to 10.0.10, we've been getting system medium severity messages on our active firewalls that "LDAP auth server xxxx.xxx.xxx is up !!!".  We never receive a down message though.  We're not experiencing any issues with LDAP which makes m

...

jmurphy by L2 Linker
  • 770 Views
  • 3 replies
  • 0 Likes

PCNSE certification

Spoiler
Spoiler

Hi All,

I am looking to certify myself with PCNSE certification. Is there any active promo/vouchers for discounts available?

 

Pls suggest.

Hi All, I am looking to certify myself with PCNSE certification. Is there any active promo/
...

Software End-of-Life policy vs end of support

How long will a software listed as end of life ( https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary ) be supported? I have read conflicting information on this.

 

I suppose support could be defined as:
1) Rec

...

Reading counter flow errors

Hi All,

 

Apologies as I am still new and trying to learn Palo Alto. I encountered an issue wherein a new switch is causing a large number of packet drop parse. I found it on the IP below. How do you interpret the logs generated? 

 

 

The 10.5.4.10

...

mudvayne15_0-1660691821831.png
mudvayne15_1-1660691830234.png

Failed to Fetch the Device Certificate

Hi Team,

 

I facing the issue to install the device certificate. I have generated the OTP in CSP. and installed it in the panorama-managed firewall. but we are getting the below error ' Failed to fetch the device certificate.TPM public key match fail

...

Unable to categorize my companies URL

Hi,

 

I am unable to categorize my companies URL on behalf of one of our customers, that uses a Paloalto firewall.

 

My colleague received the following message when attempting to perform this action:

 

 

"In the meantime, Palo Alto Networks URL Filt

...

Resolved! Access Palo Alto HTML Files

Hello, our user want to deploy Palo Alto Firewall 3410 with Os 10.2.2, for security reason then they do the vulnerability assessment but using different device but with same OS 10.2.2.

 

And the result is that they found 2 vulnerabilityissues, low an

...

Resolved! QoS Configuration Subnet /32

I have followed below link to configure a QoS setting for testing purpose. 

Configure QoS (paloaltonetworks.com)

 

I have specify only 1 ip 192.168.1.x /32 in QoS profile and also tried to specify in the interface clear text traffic. 

In the result t

...

JiaXiang by L3 Networker
  • 677 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors