General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Kerberos SSO PAN-OS 7.0.1

Hello,

at the moment I'm trying to set up a SSO Auth with the Admin Web Interface (and Captive Portal). I set it up like the documentation of PAN-OS 7.0 told me. I tried different Crypto types but all with the same error.

1. Log in to the KDC and open

...

Change password for TACACS user

Hi all,

 

Is it possible to allow Firewall administrators (authenticated via TACACS+  running on Cisco ACS) to change their expired TACACS passwords when they're logging in to Web UI of the Firewall ? 

 

Cheers,

 

Marek

Globalprotect portal not found

Hello,

I'm having some issues connecting with globalprotect with one laptop.

The 4.1.10 version was installed . Tried with 4.1.12 and 5.0.2, same issue.

I can connect via the browser without issues. install and uninstall a few times with no luck...

Resolved! Airwatch issue Session Browser Query

Hi All,

 

Just a sanity check question to ensure my config and thinking okay.

 

We are having issues with VMWare Airwatch traffic to a cloud server for a customer that migrated across to our network. They don't seem to be able to connect to the server fo

...

a.jones by L3 Networker
  • 1726 Views
  • 2 replies
  • 0 Likes

Better user web traffic reporting?

Reaching out to the community to see if anyone has a solution for obtaining nice pretty VP readable reports for user web browsing traffic history that works well with the PAN firewalls? The URL report on the firewalls is overwhelming and requires a l

...

hshawn by L4 Transporter
  • 1628 Views
  • 3 replies
  • 0 Likes

Resolved! user-id in the DMZ zone

Hello,

I have user-id enable on the trust zone and it works fine. I also have a DMZ zone and was wondering if it was ok to enable it on that zone? I know best practice is to not enable it on the outside zone, but we have many dmz to trust security pol

...

roma by L2 Linker
  • 2175 Views
  • 1 replies
  • 0 Likes

STIX/TAXII feed not working for otx.alienvault.com

Hello,

 

I tried to create a STIX/TAXII miner for otx.alienvault.com. I used the default MineMeld taxii client for this(minemeld.ft.taxii.TaxiiClient) and the new client minemeld-taxii-ng(taxiing.Miner).

 

The first client does returns the error ' module

...

folmer by L2 Linker
  • 6487 Views
  • 10 replies
  • 0 Likes

Route Reflectors

Is there more details on the route reflector options? The documentation is pretty vague. 

 

what is enable sender side loop detection? What is bidirectional peering?

ConnectionError: Too many connections

Hi,

I'm using outputs feeds from minemeld in my Firewall and I have seen the next:

  1. If I try to retrieve an output with 142 or less indicators, it works. The Firewall shows the entries from minemeld output node.
  2. If I try to retrieve 150 or more indicator
...

Mtorre by L0 Member
  • 1798 Views
  • 1 replies
  • 0 Likes

scheduled reports are not being generated

Hello Community!

 

I have an issue with scheduled reports, they are not being generated. I send a "test email" and I receive it, I reboot the Firewall and I receive the scheduled reports for some time but then it fails again. I´m running PAN-OS 7.0.1

...

Carracido by L3 Networker
  • 1850 Views
  • 4 replies
  • 0 Likes

PA 500 home use

My employer is starting to use PAs, and as a networking person I want to get much more comfortable with them, I wanted to buy an small one off ebay to use as my home router. I won't need global protect, OR wildfire as I just want to run the PA as a r

...

tmolleck by L0 Member
  • 5200 Views
  • 6 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors