General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2919 Views
  • 2 replies
  • 14 Likes

Global protect User mapping.

Hi Team,

 

One of our customer wants to restrict "per user-per system" basis.

In Global Protect Clients, one user is able to connect through multiple end devices.
Can we able to restrict i.e one user should be able to connect through only one end devices
...

MSTP and instances

HI

 

So my reading says to me

don't put vlans on instance 0 .. seems like a good idea.

 

now how many instances can I have ?

cause I am thinking an instance is like a scoping tool.

 

I would want to put my WAN ports in an instance why would I want my STP re

...

FIPS 140 and CC enabling

Couple of questions on FIPS.

 

  1. When you enable FIPS140 on a Palo it wipes the device. Can you just reload your last saved?
  2. Can a FIPS140 enabled device talk to a non-FIPS device over an ipsec tunnel provided the cyphers are compatible?
  3. FIPS disables PAP.
...

ALL SERVICES FATAL ERROR

Hi all,

 

I'm deploying minemeld on ubuntu 18.04.4LTS.

I have all services on fatal error state.

minemeld-engine FATAL Exited too quickly (process log may have details) minemeld-supervisord-listener FATAL Exited too quickl...

Decryption Certificate.

Hi Team,

 

I have created certificate which is used for Decryption purpose. I have installed in Windows and Mac and its working.

How do i install that in linux (Ubuntu or Kali ) ??

Please share your insights .

 

 

 

 

 

Policy rules organization

hello Everyone hope everything is doing well.

 

questions for the experts on palo

i have 260 rules on my palo alto environment and they are subdivided in zones and i would like to make things more organized on my rules  .

question is the rules more high

...

publishing a site website service with ssl decryption

I have an internal server which i want to publish its service to public and need to do ssl decryption, does that means i need to do "inbound ssl decryption"?

and if so, as the website is natted from outside to inside, in the decryption rule in the des

...

chuckles by L2 Linker
  • 3563 Views
  • 3 replies
  • 0 Likes

Release Notes in GUI

Anyone know what's up with the release notes links in PAN-OS or Panorama GUI?  Some of them are taking me to an XML response page and there is apparently an email circulating on REN-ISAC that the GlobalProtect links for 5.1.2 download a *.solitaireth

...

jsalmans by L4 Transporter
  • 2045 Views
  • 1 replies
  • 0 Likes

Minemeld configuration via TAXII output to Qradar

Hi All,

 

i've been trying to configure the taxiii output in minemeld following the tutorial of Qradar posted here but with no success.

I am running docker minemeld version, everything is fine until i try to add the url: https://hostname/taxii-discovery

...

macintos by L1 Bithead
  • 2501 Views
  • 1 replies
  • 0 Likes

Destination NAT with multiple server.

Hello Team,

 

I have configured destination NAT in my environment with one server.

Now i can see the number of users increases and too much traffic i am getting in one server, so i want to configure 2 more server with the same services.

For example:-

 

If

...

Jafar_Hussain_0-1587638994562.jpeg

Resolved! Limits in Old Palo Alto models

Hi,

 

I am trying to find out the number of objects and groups of objects of the old models PA-3020, PA-3050, PA-3060 and PA-5050.

 

In the new models, these data appear in the product comparison of the Palo Alto website, so I understand that these limit

...

  • 24024 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors