General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18364 Views
  • 41 replies
  • 32 Likes

Resolved! Purpose and functions of VM Information Sources?

I trying to understand what gain we have from having our vCenter server monitored by our PA 3020 firewall?I reading about it here, but not understanding it.https://www.paloaltonetworks.com/documentation/71/pan-os/web-interface-help/device/device-vm-i...

PAvCenter1.jpg
OMatlock by L4 Transporter
  • 890 Views
  • 3 replies
  • 0 Likes

API URL Logs - src.user not returning

In the below code - I"m using the API to query the URL logs. It works great. What isn't returning though is the src.user field, if it's mapped. How can I get this value? Do I need to do a separate query? JP # Build PAN API Connection and get token pa...

punkrokk by L0 Member
  • 202 Views
  • 0 replies
  • 0 Likes

receive incoming errors / 'rcv_fifo_overrun'

Hello everyone. Got a question to the community on an interesting situation: - PAN-PA-3050 / PAN OS 7.1.10- Drop Counter increases on two aggregated interfaces (ae3 - interfaces 1/3 & 1/4) - connected via Cisco vPC tech with a Nexus FEX switch- new p...

Resolved! Best practise For TAP Mode

Hello Brothers, Plz i want make a POC with one of our clients, but i need to know what's th best practise for putting the PaloAlto in TAP mode !!i mean:1-what's the rule policy that i must create ?? must enable all security profile ?2-must make dycry...

User activity Report

Hello allis it possible to put timestamp in user activity report for chronology?I am checking the Including detailed browsing but i can not see in the report which user or group of users at what time went into some resource

Radmin_85 by L4 Transporter
  • 224 Views
  • 1 replies
  • 0 Likes

Resolved! How does URL Filtering Works

Hi Guys, I have slight confusion about the working of URL filtering i.e once u define the URL Filtering Profile on any rule how does the URL or any website gets catogorised,i mean how does the PA knows that this website belongs to this category. I kn...

mahmoodm by L2 Linker
  • 1387 Views
  • 5 replies
  • 0 Likes

BGP

hello i am new to palo alto i recently configured bgp on my palo alto pa 500 device and my bgp peer is getting connected and then after a minute it gets disconnected and the bgp state becomes active. also i am using md5 key for authentication. could ...

Firewall working as proxy for mail server

I have customer using TMG holding public ssl certificate for mail . The mail server doesnt have ssl certifcate.Customer wants to eliminate TMG and using palo. Can palo hold the cert to authenticate the ssl . Mail serversits behind the palo in trust z...

Global Protect - two portals same firewall

Hello all, Here is my question. Can I configure on the same firewall one global protect profile to only authenticate users based on certificates and a separate profile to authenticate users based on their AD credentials? Currently I have authenticati...

OCSP App-ID fail

Hello,is anyone using ocsp as single app in a rule ? It's sometimes failing to match, seen as "web-browsing" although on very easy to recognize URLs such as ocsp.comodoca.com. Quite annoying when you debug a third-party software failing to setup beca...

Resolved! Interfaces/zone associations lost after commit

Hello guys, I have a couple of PA-820 (PanOS 8.0.3) who has been imported to be managed via Panorama.Since that, everytime I make a "Push to devices", they lose the association between 2 interfaces and the zones and I need to fix them manually. I gue...

Shye80 by L1 Bithead
  • 995 Views
  • 2 replies
  • 0 Likes

User-ID mapping

Hello. We have such kind of problem. This user has allowed privilege to visit this category and the other one, but PA very frequently identify it by ip, not the username (with User-ID). we use agentless client for mapping between PA and our AD.The pr...

1512392827715.png