General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

global protect client certificate

Hello Team,

We have a global protect portal and gateways running . GP is currently integrated with AD. The certificate on GP is a wildcard signed by an external CA. Currently no certificate check is being made and authentication is purely on basis of

...

Resolved! Whatsapp voice calls are not working thru firewall

Hello Community,

I would like to see if anyone had any success with making Whatsapp calls and/or video to work using an internal wifi network.
When I try to make a call with my cell phone, I will see "ringing..." and hear the phone ringing.  The receiv

...

Globalprotect in A-A

Hi,  I have some question.

If I have configure Active-Active HA and two GP portals with PA-3260.

e.g. fw1's portal : 111.111.111.111

fw2's portal : 222.222.222.222

(limitation of SSL VPN concurrent user from PA3260: 2048 ssl-tunnels)

When fw1,2 are in ope

...

gksnl11 by L0 Member
  • 1666 Views
  • 1 replies
  • 0 Likes

GlobalProtect VPN Client Welcome Page

Hello,

 

We had the welcome page for GlobalProtect VPN Client enabled at one point. We recently disabled it but the welcome page still displays upon connect. Has anyone else run into this and found a way to permanently turn off the welcome page?

Upgraded to GP client 5.2 Driver error

I installed GP client 5.2.1 for Win 64bit and received an error about a digitally signed driver... it reverted back to the previous version 5.1.1.. did I miss something. Download the MSI from the Support site.

 

BurnseyBoy_0-1598481781255.png

Resolved! SSL decryption enabled and Packet Descriptor

Did SSL decryption on PA 5220 running 8.1.9.

 

When i run below command 

 

show running resource-monitor hour last 3

Resource monitoring sampling data (per hour):

CPU load (%) during last 3 hours:
core 0 1 2 3 4 5 6 7
avg max avg max avg max avg max avg max

...

MP18 by Cyber Elite
  • 3826 Views
  • 4 replies
  • 0 Likes

*Urgent* TCP out of order.

Hi team,

 

My customer is facing the TCP out of order in pcaps while accessing SMB application. 

He implemented the Zone protection in LAN zone which has Asymmetric path set as global, I changed it to bypass...

 

Will this resolve the issue...?? why TCP o

...

Regarding URL Filtering

Hello Everyone,

 

I am little confused in creating URL filtering policy rule. Does allowing certain url category in the policy block everything else?

 

For example in a policy from inside to outside i created and allowed url category online storage and b

...

Reliability of "name-of-threatid" in threat log searches

When using the "name-of-threatid" to search threat logs I am getting very inconsistent results.

 

Some signatures are returning properly, while others return blank results - even when I build the search syntax dynamically by clicking on the alerts in t

...

apackard by L4 Transporter
  • 3036 Views
  • 1 replies
  • 0 Likes

wildfire submission issue

There are certain files which were sent to wildfire for multiple times and every time we have received verdict as malicious.
The same file (i have verified the file hash available in wildfire cloud) is submitting multiple times even after the verdict

...

11111.png

Resolved! PAN-OS BGP

Hi,

 

I'm familiar with BGP in general, but not so much on the Palo Alto platform.

 

I'm peering with a service provider, but I don't see a default route being advertised toward us. The default route in the routing table is learned from an OSPF neighbour

...

Luke_R by L2 Linker
  • 2408 Views
  • 2 replies
  • 0 Likes

Invalid portal error in GlobalProtect

have the GP 4.1 client installed on a computer with Windows 10 Enterprise v2004 64bit, which when wanting to connect to the company portal, marks me as invalid portal, everything related that I have found on the network has already been reviewed but

...

Need some guidance on the VM series implementation

Hi there,

I have inherited the current network and need some help in replacing the firewall for like to like. We have a MPLS network connecting all our offices and an external firewall managed by the ISP. Traffic from all sites go out via the external

...

Network.png
nitz-sw by L0 Member
  • 2764 Views
  • 4 replies
  • 0 Likes

ISP Failover With Controlled Failback

We have a pair of PA-3020 setup with HA and ISP Failover. PAN OS 9.1.3-h. I am not using PBF. I want to connect our VOIP phone switch to the firewall. Our VOIP phones connect to a cloud based PBX. I setup a new VR for VOIP with ports for ISP1, ISP2,

...

  • 23588 Posts
  • 103 Subscriptions
Top Solution Authors
Top Liked Authors
Labels