General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 635 Views
  • 1 replies
  • 4 Likes

SSL Expired Cert and SSL decryption

 

We have vendor site which we access.

Recently their SSL cert expired and when I try to access that website chrome shows cert is invalid and still in brower it shows

it is decrypting the website and i can see the PA cert there.

 

Traffic log shows isessi

...

MP18 by Cyber Elite
  • 7093 Views
  • 11 replies
  • 0 Likes

Dynamic External Lists for Hostnames

Trying to figure out the best way to accomplish a task. 

  1. We have a "Suspicious" rule on our firewall that should be where we place hostnames for users that are observed to have questionable traffic.
  2. This will be a dynamic list that will be updated by a
...

Resolved! Creation of new Session and 6 Tuples

 

Need to confirm below -  

 

If PA has the  active session and need create a same session but the old session is active?

What action will take depending on 6 tuples?

 

 

MP18 by Cyber Elite
  • 3836 Views
  • 4 replies
  • 0 Likes

Resolved! Reading firewall palo A20 logs

Hello Paloalto community,

 

I ask for help please, I collect the logs of a Firewall palo lato A20  with graylog, I find a difficulty in reading Firewall logs. Can anyone help me to explain this logs, I want a clear interpretation of this logs.

On the we

...

F LOGS.PNG
Ayoub2 by L1 Bithead
  • 1308 Views
  • 1 replies
  • 0 Likes

Lost communications via HTTPS

Hello all,

I had a problem with a PA-220, version 8.0.9.
Suddenly I lost HTTPS service for the management interface, It was still working but I only had access via SSH.
When I entered #show deviceconfig system service I couldn't see the services HTTPS &...

upatino by L1 Bithead
  • 1452 Views
  • 1 replies
  • 0 Likes

disable automic start globalportect and create a shortcut

Hello,

 

My customer need a "GlobalProtect msi" to ditribute by GPO that complies with the following.

- Customize Portal URL. That is Ok, we edit the with orca software https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClkwCAC.
-

...

MPoffal by L2 Linker
  • 1629 Views
  • 1 replies
  • 0 Likes

Why is "set address BLAH tag BLAH not working?!

admin@PA-5250-LOANER# show address TULLY
set address TULLY ip-netmask 192.168.15.245
set address TULLY tag Safenet_Listener_Service
[edit]
admin@PA-5250-LOANER# set address POPLICOLA tag Portal_Services

Server error : tag 'Portal_Services' is not a valid

...

Resolved! UDP 443 becoming more prevelant

Today I have discovered that the latest Facebook App for Apple IOS is using udp/443 for communication. This behavior seems similar to the Google Quic protocol. I also caught a glimpse of an article referencing the move to a http2/api WWW.

 

If this is

...

Syslog Fields Mismatch the documentation PanOSV9.0

I have syslogs coming to my SIEM from the device with PanOS V9.0. The number of fields i am receiving and the number of fields specified in the documentation doesnot match.

For example, in TRAFFIC logs,

 

1,2019/05/09 15:09:20,xxxxxxxxxxxx,TRAFFIC,end,2

...

gnikesh by L1 Bithead
  • 1387 Views
  • 2 replies
  • 0 Likes

Resolved! VPN Site a Site Palo Alto Pas de traffic retour

Bonjour

j'ai monté un tunnel vpn entre un PA-850 et un PA-220. La gateway IKE et le tunnel sont au vert.

Je n'obtiens aucuns trafic en reception dans le tunnel sur le site A. Le site B quant a lui recoit mes requetes et y repond, mais comme je n'ai pas

...

Global protect users issue

Hi all,

 

Im facing an issue concurrent users can access globalprotect vpn simultaniusly. I need to restric that connectivity to two. Please advice me best option.

 

Thanks,

Lakshitha.

Resolved! setting security rules for vpn access for certain users?

i created a remote vpn and a vpn zone for local users , i created a security rule from vpn zone into inside but the problem is when i try to set certain access for different users , when i type the user name it doesnt auto complete it or list other l

...

chuckles by L2 Linker
  • 1091 Views
  • 1 replies
  • 0 Likes

Resolved! By using LAN unable to connect VPN

Hi Experts,

 

I have installed Global Protect VPN client. When I'm trying to connect VPN it is throwing an error "Server Certificate is invalid".

When I connect mobile internet or internet dongle to my machine I can connect VPN. But when I connect throu

...

Prasuna by L1 Bithead
  • 1650 Views
  • 4 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors