General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1694 Views
  • 0 replies
  • 0 Likes

Mulit-Vsys setup with Wildfire

Hi Friends,

 

We are planning for a multi-vsys PA setup, where one vsys will have only L3/L4 policies and second vsys will be in L2 bridge mode with Threat prevention features only.

Vsys1 will only scan L3/L3 policies while vsys2 will scan traffic fo

...

Site blocking under music category

Hi Team, 

One Visa processing URL blocking under Music category in my firewall. I ready added the this site into allowed list. But still blocking under music category. How to allow this URL make acces withough enable music category. 

GP Always on VPN - Except if on internal LAN?

Is there a way to implement this? I have seen the internal host detection option but as far as I can see that is only to choose whether you connect to an internal or external gateway.

I want all remote site users to go through the Palo Alto, but I can...

welly_59 by L3 Networker
  • 3746 Views
  • 3 replies
  • 0 Likes

GlobalProtect Always On Issue

I am currently testing GlobalProtect Always on, I have configured to operate at user logon. The issue I am having is that on start-up of my laptop, on my corporate network I am prevented from any network access. If I connect to my public WIFI and con

...

rossm by L1 Bithead
  • 4639 Views
  • 8 replies
  • 0 Likes

how to add certificate global protect for ipad

Hi everyone,
"I'm stuck at step 7 (7- Settings > Profile downloaded >"Im stuck in" Install > Enter phone Passcode > Install > Install > Install >
Done),
When I install the certificate, it shows a notification that it cannot be verified "not verified'
Wh

...

HAINVH by L1 Bithead
  • 1107 Views
  • 4 replies
  • 0 Likes

Resolved! advanced url filtering question

https://www.paloaltonetworks.com/apps/pan/public/downloadResource?pagePath=/content/pan/en_US/resources/datasheets/advanced-url-filtering

how can i configure the firewall with Advanced URL filtering license to protect the following item

> Antievasion

...

Martin_Chung_0-1735897242147.png

License Usage AuthCode

Hi there

 

We are trying to track license usage as shown here: https://docs.paloaltonetworks.com/vm-series/11-0/vm-series-deployment/license-the-vm-series-firewall/vm-series-models/licensing-api/use-the-licensing-api/track-license-usage

 

For the cal

...

Resolved! Site to Site VPN

Quick question on setting a site to site vpn, using tunnel mode. If I have a site "A" peer going and connecting with a site "B" peer for a VPN, can both sites have the same IP address subnet, or will that conflict? 

 

Scenario:

  Site A: 192.168.20.5

...

GlobalProtect Android version 13 issue

Global Protect login continues to fail on Version 13 Android.

 

It seems to have been caused by Android security enhancement issues.
 
created it with SHA 384 but I can't log in.
 
"The network connection is unreachable or the portal is unresponsive,
...

qmso475_0-1701243435266.png
qmso475_1-1701243590189.png
qmso475_2-1701244110530.png
qmso475 by L3 Networker
  • 3593 Views
  • 11 replies
  • 0 Likes

EST Enrollment over Secure Transport

I use certificate based IPSec VPN Tunnels that rely on Certificates.  The Certificate Authority i use supports EST to allow for automated enrollment similar to SCEP.  Is there a way to configure Pan-OS to work with EST instead of SCEP?  I have not be

...

Resolved! Regarding Security Advisory CVE-2024-3393

Hello Team,

   I have recently upgraded my pa-1410 firewall to panos ver. 11.1.4-h7, because its preferred version so far.

Today I have received this advisory link ...

https://securityadvisories.paloaltonetworks.com/CVE-2024-3393

I have DNS Security

...

  • 24216 Posts
  • 117 Subscriptions
Top Liked Authors
Labels