General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 254 Views
  • 0 replies
  • 1 Likes

Resolved! New Install Checklist

Hello -

Has anyone seen or created, that they'd like to share, just a general checklist of information to collect and steps to do a new install?

Resolved! Problem URL-Filter onedrive urls

Hello everybody,

 

I use url-list from urlhaus. If I test some entries, I got a problem with onedrive-urls like this:

 

onedrive.live.com/download?cid=a75074ec168603e4&resid=a75074ec168603e4%21108&authkey=apnjueurszwr7fi

This url should be blocked by urlf

...

IKEv2 keepalive tuning

IKEv2 on PA has built in keepalive mechanism, but it can only act if the communication is lost for more than 5 minutes: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClgcCAC

After testing it out, about 7-8 minutes passed un

...

nikoo by L3 Networker
  • 4999 Views
  • 1 replies
  • 0 Likes

Resolved! What happens to active sessions in Dual ISP Scenario

We have 2 ISP's, primary is down right now. Both ISP's connect to different interfaces. When Primary comes up, the interface will be different for outgoing/incoming traffic. Will the active rdp/web sessions/GlobalProtect/IPSEC tunnels drop when prima

...

raji_toor by L4 Transporter
  • 3020 Views
  • 2 replies
  • 0 Likes

DataPlane Restarted unexpectedly

As we have seen that in system log the dataplane is Restarted. When i  run this command show system resource follow i can see that  cpu utilization goes 100%. Please suggest as i run 8.1.7 PAN-OS version. 

 

 

 

Joshan_Lakhani_1-1596621967579.png

DHCP client identifier 61 return VLAN id

I am using my pa-850 as a DHCP server on a small office LAN. I need to assign a VLAN to the phones and another VLAN to the computers. The phones are sending Option 61 Client identifier as part of DHCP Discover. How do I configure DHCP custom options

...

Video problems

hi, im having problem with videoconference LIFESIZE, the calls work but we cannot see the video. We have a rule any any permit and we dont know whats happening. I read about disable statefull packet inspection in our firewall. how can i do this in PA

...

Customer Support Portal 2FA Disable

In trying to improve the security of our access to CSP, I enabled 2FA at an account level.  In testing, it was not as configurable as I wanted, so I disabled it for the account.  In attempting to disable it for my own account (as required after enabl

...

cdwing by L1 Bithead
  • 2566 Views
  • 1 replies
  • 0 Likes

Resolved! How to clear global protect previous users

I configure global protect users in address about 1000 for future plan.

but users is only about 200.

when gp users connect, it cannot get old IP address. Get new IP address.

How can I clear previous users and IP address.

zayyar by L0 Member
  • 5949 Views
  • 2 replies
  • 0 Likes

Minemeld Gridmeld Cisco ISE integration

Hi,

 

recently we configured Minemeld with Gridmeld to fetch SGT-IP bindings from Cisco ISE over RestAPI (PxGrid). Minemeld is pushing the SGT-IP Bindings correctly into the dynamic object groups. However, we noticed the IP to tag bindings are sometime

...

Isssue with EDL updates

We have already configured the EDL feature in Palo Alto but the following behavior of Palo Alto has been observed while accessing the digital App and digital.com from the internet using 03 different blacklisted public IPs by Spamhaus (which is also u

...

IP 1.JPG
IP 2.JPG
IP 3.JPG

panwdbl request

I have few Public IP which is blacklisted by there respective publishers, but it's not listed to panwdbl.appspot.com list.

 

How I can send a request for updating the those IPs

PAN-ENT-PLAT-ESA-TT-1YR

Hello Dear All,

 

Can you provide me with specification documents for these part numbers:

PAN-ENT-PLAT-ESA-TT-1YR,  PAN-ENT-PLAT-ESA-TT-3YR,       PAN-ENT-PLAT-ESA-TT-5YR

?

Appreciate your fast response

Thanks

Ahmed Sabry

AAhmed by L1 Bithead
  • 4491 Views
  • 6 replies
  • 0 Likes
  • 23628 Posts
  • 107 Subscriptions
Top Liked Authors
Labels