This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 389 Views
  • 0 replies
  • 0 Likes

trust-untrust common apps block user

Without giving any low level info

how would a person go about a blocking a single user, via policy, get blocked from trust-untrust common apps w/o affecting other users?

Create a policy above it? Or negate the user?

PA200-1 by L1 Bithead
  • 1767 Views
  • 1 replies
  • 0 Likes

Resolved! Migrating config from PA -500 to pa 220

I

Hi,

Planning for upgrading PA-500 to PA-220, Just wanted to be sure that if we download the current running config from PA-500 and import it to new PA-220 device, will that work? 
I am not sure if Importing configurations between non-matching hardware

...

Prelogon - PanCredGet

PAN-OS - 9.0.3

Global Protect 5.0.3

 

We are having problems with GPPrelogon. 

 

Logs:

 

(T7612) 07/22/19 15:20:16:670 Debug(5727): REGION-PRIO, region code is GB
(T7612) 07/22/19 15:20:16:670 Debug(10868): REGION-PRIO, save region code GB
(T7612) 07/22/19 15

...

BizBo by L2 Linker
  • 8096 Views
  • 3 replies
  • 0 Likes

Best siem

Hello all its been a long time, since they took away my sentinel role I haven't been on here much. Does anyone have a recommendation for a siem?

jdprovine by L4 Transporter
  • 3821 Views
  • 5 replies
  • 0 Likes

Resolved! CEF PANOS 10

Morning!

 

I can see that PANOS 9.1 has a CEF will this work on PANOS 10 as I have not been able to find the CEF for PANOS 10

 

Thanks

 

BizBo

BizBo by L2 Linker
  • 2321 Views
  • 1 replies
  • 0 Likes

Resolved! blocking machines from AD-group

Is it possible to block outgoing traffic, from an active-directory group containing machines?

blocking traffic by username works fine, but i want to use the machine ad group rather than entering all machines by fqdn or ip in an address group of object

...

skemena by L1 Bithead
  • 4252 Views
  • 5 replies
  • 0 Likes

Resolved! Creating static routes in CLI versus GUI

I have noticed that if a create a static route via the cli the xml configuration is less than if you create the static route via the GUI.

 

In the cli I can simply set the destination and next hop. In the GUI there are many other options (most I never

...

Resolved! Azure HA same resource group ?

This doc says both VM's have to be in same resource group, but portal doesn't allow me to deploy another VM in same resource group, where i have already deployed a VM.

 

https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm

...

raji_toor by L4 Transporter
  • 3088 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect iPad VPN App

We have many users getting a pop up reading

The Network connection is unreliable and GlobalProtect reconnected using an alternate method. You may experience slowness when accessing the internet or business applications.

 

Anyone seen this and what maybe

...

Renew firewall CA certificate and distribute with GPO

We have created on the firewall a Root CA which also signs the SSL Forward Trust certificate.

The firewall Root CA certificate has been deployed with GPO to all our devices there Trusted Root Certificate Authorities.

The root ca certificate on the fire

...

ZEBIT by L3 Networker
  • 2384 Views
  • 2 replies
  • 0 Likes
  • 23842 Posts
  • 112 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks