General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 527 Views
  • 0 replies
  • 0 Likes

Resolved! SSL Decryption Question PANOS9

Hi,

 

i have one short question about PANOS 9 and 10 ssl decryption.

We use ssl decryption on all PAs for many years.

Is the rule 77 obsolet after upgrade to PANOS 9 /10??

The rule was a must have for ssl decryption working on PANOS 7.

 

 

Best regards,

Chris

...

HW-ChrisME_1-1616593171357.png

Resolved! FW routing packets to internet vs internal

I have a weird issue with a LAB interface/zone that when packets to a cloud IP that is reachable via the core it routes it to the internet vs the core.   All other traffic is routed correctly but not this and I can't seem to figure out why.  10.100.2

...

drewdown by L4 Transporter
  • 1926 Views
  • 1 replies
  • 0 Likes

Revert Pan local interface object back to Panorama

Hi All,

 

I follow this KB by remove static route to particular interface from virtual router  but 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLIxCAO

 

I face another issue is the set vsys vsys3import network interface [ ae

...

Kiizai by L0 Member
  • 1844 Views
  • 1 replies
  • 0 Likes

PAN-GPS POWER SHELL

Hello,

I have the below query, can someone explain this.

While reviewing PowerShell command execution we encountered a scenario where PANGPS.exe file in the program files Palo alto installation folder was generating PowerShell commands. i want to under

...

Resolved! Compatibility SFP for PA-5250

Hello,
Can you help me? I have an Avago AFBR-709SMZ SFP, in the documentation it says that it has withdrawn from the AVL. So, can I use them and it would not have problems in their operation?

 

https://live.paloaltonetworks.com/t5/operations-documentati

...

Resolved! Subscribe to Newsletter and CIRT

Hello All,

 

Hope you are all well and safe. I'm looking for a way to register to the PA Newsletter and CIRT Notifcations as to be aware of any security threat or a CVE related to PA Devices as to keep my customers devices up-to-date, and their network

...

Unable to block https from untrust zone

Hi guys,

 

I have a query were im not able to block https traffic for a specific domains subdomain to be blocked. Where i have created a url catagory and mapped it with url filtering and called that in a security policy.

But as i see that the http is ge

...

Autofocus and minemeld

Hello, I don't understand what the Autofocus service is doing.
 
What is the goal ? It provides the list of attacks present in a corporate network? How do you connect the firewall and the Autofocus service?
 
 
I also do not understand what the Minemeld
...

Sarou22 by L2 Linker
  • 1843 Views
  • 1 replies
  • 0 Likes

Minemeld

Hello, I don't really understand the notion of minors with Minemeld. Can you explain this diagram to me please? THANK YOU

Sarou22 by L2 Linker
  • 1757 Views
  • 1 replies
  • 0 Likes

High Availability

The Palo Alto instructions to set up High Availability are fairly straightforward, but the devices upstream and downstream barely get a mention. In our case, downstream we have two Cisco switches and multiple VMs attached. Upstream are two Cisco swit

...

jmck9999 by L1 Bithead
  • 3614 Views
  • 4 replies
  • 0 Likes

Resolved! DoS Protection arguments

I'm PA student, and learning DoS protection. I have a question, In Object > DoS Protection > Add profile > Resources Protection, Maximum Concurrent default value is 32768, but I can not press OK and prompt the value is 0 ~ 0x4e2, it is decimal 1250.
W

...

Chin123 by L1 Bithead
  • 2277 Views
  • 2 replies
  • 0 Likes

BGP Configuration Help

Hi

I am not a network engineer by no means and have setup basic BGP in the past with various peers with the peers being the source of truth for all routes.

I have a situation were our primary firewall has been using static routes for everything, defaul

...

  • 23900 Posts
  • 113 Subscriptions
Labels