General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2836 Views
  • 2 replies
  • 13 Likes

Global Protect gateway timeout

We are connected via Global Protect are having issues where the session gets disconnected overnight. Is there a way to override this setting only for one user ? Does below settings change will affect all users 

 

We are using split tunnel.

 

Could you pl

...

Capture.JPG

Resolved! How to remove SSH weak algorithms?

An internal PCI vulnerability scan has revealed the following issues with the PAN-820 appliance:

1. SSH Weak Algorithms Supported: Tester has detected that the remote SSH server is configured to use the Arcfour stream. RFC 4253 advises against using A

...

file download slow

Hi,

My speedtest shows 50 Mbps bandwidth remainig

.But when downloading files i am getting very low speed . To isolate the problem bypassed PA, then speed was ok .

Traffic shaping is enabled on PA.

Web browsing is  ok 

How to fix this problem 

Thanks

simsim by L4 Transporter
  • 4980 Views
  • 5 replies
  • 0 Likes

Resolved! Jquery vulnerability on Management Interface web server

Hi team

We received this vulnerability in the report by our vendor for our PA

"

According to the self-reported version in the script, the version of JQuery hosted on the remote web server is greater than or equal to 1.2 and prior to 3.5.0. It is, theref

...

shubhamG by L1 Bithead
  • 11032 Views
  • 3 replies
  • 1 Likes

Auto commit failed after upgrade to 8.1.0

We upgraded the passive firewall on our Active/Passive HA firewalls from 8.0.19 to 8.1.0.
After installing the 8.1.0 image, firewall rebooted. After that, ethernet interfaces as well as HA ports didn't go UP.

 

We also got an error, that the auto-commit

...

Resolved! export "application seen" to csv/pdf ?

Hi folks,

following situation: one of my customers has a rule that allows any traffic from trust to untrust.

the rule detects over 400 application with more than 2 terrabytes of data in the last 30 days.

is the any kind of way to export the "seen apps"

...

Custom Response Page

Hi All,

 

Hoping someone can help. I need a custom response page for URL Filtering. I know I need to use Javascript but that is not my forte so hoping can provide the inform for me. I need to produce two distinct page responses depending on the IP addr

...

a.jones by L3 Networker
  • 5139 Views
  • 8 replies
  • 0 Likes

Nest Thermostat

Anyone running a Nest Thermostat behind a Palo Alto Networks firewall?  I am seeing an inability to connect to the nest site.  Logs show  a repating SSL on 443 with session end reason:  tcp-rst-from-client

 

Any thoughts would be appreciated.

 

Bob

BobW by L1 Bithead
  • 6512 Views
  • 9 replies
  • 0 Likes

HIP Profile serial number filter issue

I have upgrade my firewall from 9.0.9 h1 to 9.1.4 when i generate the report for the HIP profile or use the filter base on serial number iam facing this issue please suggest i there any bug in 9.1.4 

Even clicking on serial number in HIP Match logs to

...

Joshan_Lakhani_1-1597998626771.jpeg
Joshan_Lakhani_0-1597998604250.jpeg

RADIUS with CHAP not working

RADIUS with CHAP protocol for authentication will not work even though LDAP does from the same two Microsoft 2012 servers. I have utilized the CLI "test authentication" to confirm the findings, here are facts;

 

  • Palo Alto  running 8.1.13 
  • Microsoft 2012
...

rockfort by L1 Bithead
  • 1384 Views
  • 0 replies
  • 0 Likes

EDL IP List GUI not display

 

Currently setting EDL
EDL IP information can be captured on CLI
But it cannot be confirmed in the GUI

Tried PANOS  version 8.1.5 and 9.0.0 

 

Try some edl can
Some can not be displayed

not display
https://report.cs.rutgers.edu/DROP/attackers

can
http://rules.

...

Houran_0-1597934331356.png
Houran_1-1597934412758.png
Houran by L0 Member
  • 1596 Views
  • 1 replies
  • 0 Likes
  • 24006 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors