General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 509 Views
  • 1 replies
  • 4 Likes

# of rules vs simplicity

Hi all,

 

I'm currently reviewing our PA5250 security policy ruleset and I'm doubting the best way to handle it. We have about 800 rules and lots of those rules combine functions. For example a server is allowed to FTP to ip a.b.c.d and should be allow

...

tomdevos by L0 Member
  • 2427 Views
  • 5 replies
  • 1 Likes

Resolved! Decryption certificate validation issue

Hi Guys,

 

I'm experiencing issue where one of the site is not accessible when the decryption profile is enable with no decryption for SSL forward proxy. After disabling the block untrusted issue I'm able to access the  site. 

 

I'm facing this issue in

...

BlueKeep HIP policy

I've created a HIP policy to filter GP users if they are missing the security patches for BlueKeep. However, with monthly roll-ups I have to go in and generate a new HIP object each month. 

 

We currently patch our Windows machines 30 days behind Micro

...

SPI Value in phase 2

I wanted to know that I could see the SPI value in the wireshark in site to site policy based VPN.

 

So basically in base two there are two SPI value inbound and outbound, so if the attacker is capturing my traffic then he'd able to see my SPI value. t

...

panorama Device template HA setting error

Hello,

 

I am getting an error pushing a template from panorama to a device as below

 

Details:

  • High-availability ha1 interface needs a prefix length(Module: ha_agent)
  • Commit failed
  • Warnings:

 

This is related to a HA settings. However i have manually set

...

KarimSN by L1 Bithead
  • 2083 Views
  • 1 replies
  • 0 Likes

Certificate issue for Random website on Random Times

Hi Team,

 

We are intermittently experiencing Certificate issue while accessing some random website in Random times.

We have created Certificate in Firewall only for the purpose of Global Protect VPN and apart from that we haven't created any certificat

...

SahulH by L3 Networker
  • 2748 Views
  • 6 replies
  • 0 Likes

Panorama logging quotas

Does anyone know if you can configure logging quotas per device group(s) or firewall(s)

 

My panorama is running 9.02 in legacy mode.

wibba by L1 Bithead
  • 1110 Views
  • 1 replies
  • 0 Likes

Source user column not populating

Source user column is empty under the monitor tab - traffic logs. We have checked all the settings from our end and couldn't see anything wrong with that.

It was working before, no changes been made. Noticed it stopped working recently.
No proxy server

...

Resolved! Multi-category URL in PanOS9

Can you please help me with understanding the new PanOS9 URL multi-category feature?

 

Now URL can have up to 4 categories. If the four categories have different actions, I assume that the firewall will take the most restrictive one, however I could no

...

BatD by L4 Transporter
  • 3071 Views
  • 2 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors