General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 255 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 935 Views
  • 0 replies
  • 0 Likes

Resolved! PA 3050 web Gui access

I am working with PA-3050. I can log in using ssh, but i can not login via web Gui.

http/https service are enable though.

Can someone share some thoughts on how to proceed?

FIDELE by L1 Bithead
  • 3274 Views
  • 2 replies
  • 0 Likes

Different Actions for Security Rules

Hi Guys,

I would like to know what are the difference between the following actions in the security rules for PA.

1. Deny

2. Drop

3. Reset-client

4. Reset-server

5. Reset-both

Which of these are the most preferred to use? Is deny or drop action also resets

...

Nikko by L1 Bithead
  • 3281 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect with Active/Active HA

I'm having a hard time finding much, if any, documentation on this scenario.  I've tried a couple ways of doing it and they work, but I'm trying to figure out what the best way to do it while being as redundant as possible.

 

What I like the best so fa

...

SMB URL File Logging acheivable or not?

Hi Palo Alto Experts,

 

I want to know if we want to log SMB URL Blocked events then can we do in Palo Alto or not? Basically, the requirement is as below:

 

Example URL if typed by compromise system is: smb://www.example.com/fileshare/malware.exe

 

Right

...

Add network to address group via CLI?

I am trying to add a network to an address group via CLI on PAN OS 9.1.X

 

# set vsys vsys2 address-group XXXXXXXX static 108.61.41.0/24

 

Server error :  static '108.61.41.0/24' is not a valid reference

 

What is the valid syntax?

jsogla by L0 Member
  • 1983 Views
  • 1 replies
  • 0 Likes

Outside interface listening on HTTPS "502 Bad Gateway"

I have this odd issue whereas one of HA Pairs seems to be listening on 443 on its outside interface for GP but I don't use GP and never had.  I have a interface profile that allows HTTPS but not from any IP and when I disable that it still shows that

...

drewdown_0-1612816320888.png
drewdown by L4 Transporter
  • 2882 Views
  • 2 replies
  • 0 Likes

Resolved! Is JSON Based URL is configurable in Security Policy as EDL.

Hi Team,

 

Please confirm us can we configure JSON based URL as a EDL in Security policy on Palo Alto Firewall.

 

Herewith, I have provided you with the sample JSON Website for your reference. Please refer and share us with your valuable inputs.

 

https://

...

SahulH_0-1613372205367.png
SahulH by L3 Networker
  • 6863 Views
  • 3 replies
  • 0 Likes

URL wildcard Pattern

Hello everyone, I need to block URLs that have a word pattern/string, It is possible to restrict certain strings inside the name of a URL?? for example the word "good" inside the website "www.goodwill.com" to be blocked ? I already try with Wildcards

...

Destination NAT for Route base VPN

We have an requirement to set up a route base VPN, but remote proxy IP subnet clash with an existing remote subnet.

 

We are planning to use destination NAT, but not sure, how the routing will be controlled.

 

Please help to solve this problem.

Gurupada by L0 Member
  • 1735 Views
  • 1 replies
  • 0 Likes

Resolved! 5260 Z MGMT PROCESS AND APP/THREAT MISMATCH

Hi,

 

I am upgrading os for some 5260 this weekend however, just realised its showing app and threat mismatch. Upon t-ahooting I realised the management process on active firewall is showing Z defunct.

 

My understanding is that it is a Zombie process an

...

qasim02 by L2 Linker
  • 2720 Views
  • 2 replies
  • 0 Likes

Incompatibility Acrobat-GlobalProtect

Hi,

 

Customer upgrade Adobe to versión 21.001.20135 and Global Protect stopped working. Issue is th esame like this:

https://community.adobe.com/t5/acrobat/adobe-acrobat-reader-21-001-20135-preventing-users-to-connect-to-global-protect/td-p/11823885?pr

...

BigPalo by L4 Transporter
  • 2570 Views
  • 1 replies
  • 1 Likes
  • 24031 Posts
  • 115 Subscriptions
Top Liked Authors
Labels