General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Certificate issue for Random website on Random Times

Hi Team,

 

We are intermittently experiencing Certificate issue while accessing some random website in Random times.

We have created Certificate in Firewall only for the purpose of Global Protect VPN and apart from that we haven't created any certificat

...

SahulH by L3 Networker
  • 3112 Views
  • 6 replies
  • 0 Likes

Panorama logging quotas

Does anyone know if you can configure logging quotas per device group(s) or firewall(s)

 

My panorama is running 9.02 in legacy mode.

wibba by L1 Bithead
  • 1308 Views
  • 1 replies
  • 0 Likes

Source user column not populating

Source user column is empty under the monitor tab - traffic logs. We have checked all the settings from our end and couldn't see anything wrong with that.

It was working before, no changes been made. Noticed it stopped working recently.
No proxy server

...

Resolved! Multi-category URL in PanOS9

Can you please help me with understanding the new PanOS9 URL multi-category feature?

 

Now URL can have up to 4 categories. If the four categories have different actions, I assume that the firewall will take the most restrictive one, however I could no

...

BatD by L4 Transporter
  • 3402 Views
  • 2 replies
  • 0 Likes

Global Protect N-FACTOR authentication

Hello,


I have the following question is it possible to assign multiple authentication profiles to globalprotect.  I wan't to accomplishg the following:

 

Users of LDAP GROUP X.:  Use LDAP authentication only.

Users of LDAP GROUP Y:  User RADIUS auth with

...

GOMEZZZ by L2 Linker
  • 1637 Views
  • 1 replies
  • 0 Likes

enabling interface ping

Hello,

 

We have a vlan.101 interface with profile permiting ping (ping service selected) enabled on it.

However, hosts on this vlan.101 cannot seem to ping this interface.

 

Arp entries of some of the hosts are seen.

 

Appreciate all help.

Thank you.

Resolved! Minemeld Regex

I want to only use the url portion of this feed ignoring the protocol portion http://

 

https://ransomwaretracker.abuse.ch/downloads/LY_DS_URLBL.txt

 

My regex is below:

 

regex: ^(http:\/\/)(.*)
transform: \2

 

This works fine outside Minemeld as python rege

...

bokeke by L0 Member
  • 4717 Views
  • 3 replies
  • 0 Likes

Default deny logging question

I notice that if a connection comes in and does not hit any policy correctly I do not see the deny in the logs. I think this is because the default behavior of the intrazone-default  rule is not to log anything. Is there a down side to setting this t

...

dstjames by L2 Linker
  • 2810 Views
  • 4 replies
  • 0 Likes

Traps configuration for VDI PVS enviroment

Hi everyone,

 

We are trying to configure Traps for VDI enviroment and we are having issues with the new images created. The VDI enviroment is a non persistent one, and we are using PVS for VDI.

 

All clients are created from a Vdisk, so there is no Gold

...

Skype SIP 5061 port allow

Hi,

I have Skype for Business Edge server, it has DMZ private IP and translated to Public NAT IP. This IP should open TCP-5061 Port to Internet and we opened. It seems traffic is passing correctly. But in real, when i do telnet test, it's fail.

It's no

...

image.png
image.png

the new versions are not shown in the panorama gui

Hello community

 

When I have to update my panorama to a new version I go to the software tab and I press the button. Check now they do not show me the new versions I only see the version that is installed in the panorama.

 

Is there any solution to sh

...

Additional network interfaces Dell R630

Hi all,

 

We are going to buy a Dell R630 for running Palo Alto VM100.

 

As this box has only a few standard broadcom interfaces on board, which NIC card would you recommend to more network ports.

4 Gigabit ethernet ports is sufficient in our case.

 

Some p

...

Palo VM randomly stops forwarding traffic

Hi all,

 

I have a new Palo Alto VM-100 running in Proof of concept on version 9.0.2-h4

I'm using a virtual wire to protect servers against all kinds of attacks, malware etc

 

Yesterday evening for the first time, everything behind the firewall went down.

...

Top Solution Authors
Top Liked Authors