General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

List all deny rules from cli

I have to list all deny rules (from cli)

The following command "show running security-policy | match index " list all security rules by name

For example:

"AllowBrach1IN; index: 1" {

....etc

What I want is:

- deny INBOUND traffic rules only but regarding en

...

jls3j999 by L1 Bithead
  • 6150 Views
  • 14 replies
  • 0 Likes

Resolved! PaloAlto 5260 upgrade

Hi, 

I am upgrading so PA firewalls from 8.1.7 and 8.1.9 to 8.1.13, normally I wouldnt ask these questions but since these firewalls are extremely critical I need to be extra cautious. 

been looking at the upgrade Matrix and couldnt see a clear answer

...

qasim02 by L2 Linker
  • 3241 Views
  • 4 replies
  • 0 Likes

User group Mapping

Wndows logon user name is ABC\xyz, and the user id fetched from AD group is ABC.local\xyz, and because of that the traffic is not hitting the configured rule. Any workaround to fix this?

zamiedu by L0 Member
  • 2170 Views
  • 3 replies
  • 0 Likes

getting DDNS working with DYN.COM service

I have to deploy some PAN firewalls at locations where ISPs only support DHCP. This seems to be increasing in some countries. I subscribed to DYN.COM but I am stuck on the certificate profile. I need the DYN.COM public cert and CA for dnsalias.com do

...

namijo by L0 Member
  • 2277 Views
  • 2 replies
  • 0 Likes

Resolved! Root cause of Syslog alert message

Hello,

 

On 14th November at 4:53PM AEDT, we were receiving the following syslog message:
"Request made to PublicCloud server returned with HTTP response code : 502"
We kept on receiving this message every 5 minutes approximately till 21:46 on the same d
...

System Log.jpg

Remove IP from autofocus minemeld database

Hello,

Can someone please let me know how can i remove the IP from autofocus minemeld database.

One of our public IP got blacklisted last week friday i.e. it was added in the list of autofocus minemeld database, we want it to be removed.

Any help wil

...

Blocking external Skype client authentication

Hello,

We are looking to block our skype clients from authenticating to our on prem servers. We nee the ability to have external parties join our web skype conferences. Anyone know what ports to block to prevent the Skype client from authenticating?

...

User-ID mapping limitation using RDP

Dear community,

 

We have a desired scenario where user_1 connects from machine_1 to machine_2 using rdp and login with user_2.

We´d like that the mapping of machine_1 associates with user_1 and machine_2 associates with user_2.

 

We are aware of the limi

...

Carracido by L3 Networker
  • 2113 Views
  • 1 replies
  • 0 Likes

Is Azure A Safe Place To Secure Data On Cloud?

I am planning to take Azure certification from one of the renowned training institute in Bangalore. I was reading some facts about Azure i.e Azure is a service provided by Microsoft which was initially known as Windows Azure. The function of Azure is

...

Resolved! A question about PA-3020

Hello, I've got a PA-3020, but I don't have license. What do I lose without the product license? Only support? I would like to know.

AKAMAI API for IP Addresses.

Hello All,

 

I have a customer that requested the information below:

 

"We have recently discovered that apple is moving to Akamai for services like App store and IOS updates.  Would you happen to know if Akamai has an API for the ip addresses so we

...

sodhegba by L2 Linker
  • 3148 Views
  • 1 replies
  • 0 Likes

GlobalProtect behaviour in Chromebook

Can anyone please confirm if below is the expected behavior of the GP Android App with internal gateway on Chromebook?

When inside the network with internal host detection GP greys out. Using GP 5.2.2

 

If GP greys out after connecting does this mean th

...

  • 24012 Posts
  • 102 Subscriptions
Top Liked Authors
Labels