General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 310 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 983 Views
  • 0 replies
  • 0 Likes

Resolved! Paloalto firewall bgp local rib

Hi,

In plaolto bgp routing table, Local rib is showing the same subnet as

prefix                 flag  nexthop

172.16.50.0/24   =   172.16.1.9

172.16.50.0/24   *   172.16.1.5

 

what does this "=" means?

certificate authentication to establish a site-to-site VPN

Hi everybody,

 

Does anyone knows if it's required by Paloalto that the identification data fields during ike setup be encoded with utf8string? Or is there an incompatibility in Paloalto if these fields are encoded with printablesting?

 

The other end is

...

BigPalo by L4 Transporter
  • 1791 Views
  • 1 replies
  • 0 Likes

Rules audit

Hello all,

I am looking for firwall hardening rules auding. what should be in consideration and i have only GUI view privilege's.

Regards

raoali by L0 Member
  • 1958 Views
  • 1 replies
  • 0 Likes

Antivirus Policy - Action based on Severity Level

Hey All,

we have Antivirus policy in place and we are seeing many, what we believe are, false positives. Mostly on PDF files. Since number is rather high, reporting each one seems a bit excessive. What they all have in common is their severity which i

...

Resolved! Layer 2 Virtual Wire and Layer 3 in on PAN

The network I inherited has a Cisco ASA and a PAN 3220 operating as

a virtual wire in serial. The NATs and most of the ACLs are at the ASA

while the PAN takes care of other protections such as geo blocking, 

correlation alerting and so on.

{Internet}--[E

...

palomed by L3 Networker
  • 3440 Views
  • 1 replies
  • 0 Likes

IPSEC VPN intermittent issue

HI,

 

I have IPsec vpn tunnel between Palo alto to cisco asa, tunnel is UP however it disconnect intermittently. Is there any way to check reason behind disconnection in logs? I have applied path monitoring but it show only UP and down logs not exact c

...

Live community email DMARC issue

Notification emails that I normally get from the Live community are failing DMARC checks which is causing them to be quarantined.  Their DKIM appears to be invalid and SPF is also failing.  This has been happening for probably a week or so.  I've bee

...

cchaffee by L1 Bithead
  • 2486 Views
  • 1 replies
  • 0 Likes

Probably a Stupid Question Tagged Interface

This is probably a stupid question, but if I just create another Layer-3 sub-interface off of an existing physically connected interface, and TAG that sub interface, that is all I need to do to bring a tagged trunk in through an existing physical con

...

birkhojk by L2 Linker
  • 1874 Views
  • 1 replies
  • 0 Likes

Resolved! Fail to fetch EDL form Cortex XDR on PANOS

Hi all,

 

I have followed on the KB (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CmqFCAS) but still no luck to fix the issue. service route is using default and certificate Profile is using Root CA as well

 

 

 

 

2020-10-22 23...

Tutchapon_0-1603383292438.png
Tutchapon_1-1603383342710.png
  • 24040 Posts
  • 115 Subscriptions
Top Liked Authors
Labels