General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Edge Not Displaying Images With Palo Alto Networks Generated Page

Recently our Network guys implemented a Palo Alto firewall and we have started using it to block content. For instance a user tries to go to a gambling website and they get a blocked message that has a couple of images that are hosted on a different IIS based web server but the main page itself is hosted on the Palo Alto.IE and Chrome display th...

Techsupport file not generate

when i generate the tech support file from GUI it's start after we min the loading process is remove and failed to generate the tech support file and we cannot see on GUI PAN-OS version : 8.1.9 Please advise

Syslogs vs. Traffic Logs in Monitor

Good evening, I am working on a project that requires the use of threat logs and traffic logs of an institution with which I am affiliated. Our security manager can provide me access to our threat logs via the Monitor tab in PAN-OS. However, we are experiencing difficulty finding the traffic logs I need. I am looking for specific traffic logs, i...

Can get a User-ID table via XML-API on Windows UID agent?

Hi everyone, I can get a User-ID table via XML-API on a firewall for checking that the user authenticated and do something such as logout a user.I need to use a UID agent for doing it. Can get a User-ID table via XML-API on Windows UID agent? I haven't found any documentation about XML-API on UID agent. Thanks,Tin

Tinkani by L1 Bithead
  • 2142 Views
  • 1 replies
  • 0 Likes

Panorama with virtual system

The issue is when we try to connect the firewall “with four virtual systems” to panorama, not all zones imported on the panorama.Zones working fine with two virtual systems and not imported all zones on the other.If we try to create it manually on panorama there is an operation failed to tell us the zone is already in use.We try to delete the fi...

Firewall syslog timezone

From my understanding, the timestamp within syslog messages from the Palo Alto firewall are based on the time zone configured on the firewall. However, the syslog message does not include what that time zone is, which can cause problems for SIEMs and other log ingesting devices. Is my understanding of this correct? And if so, is there a way have...

HIP profiles for internal outbound traffic

Hello Community, I hope you are well. I need to apply our security posture for internal user browsing. I would like to know if it is possible to apply HIP profiles for internal users (not vpn ssl connections). Just installing Globalprotect on the workstations is enough to collect the host information ?. Thank you !

Resolved! Problem with Panorama pushed updates

Hello all, i have problems with the security policy push.When i try to push them the commits fails with : . Validation Error:. rulebase -> security -> rules -> ms-ad -> destination 'offices-subnet' is not an allowed keyword. rulebase -> security -> rules -> ms-ad -> destination offices-subnet is an invalid ipv4/v6 address...

stef by L2 Linker
  • 14157 Views
  • 10 replies
  • 0 Likes

Resolved! Palo Alto SSL Decryption Question

Hi All, I'm looking to subject ssl traffic to my security profiles, but to do this, I believe I am understanding that for inbound traffic from the outside, you need to import the same certificate and key from each of your protected servers on the inside network into the Palo Alto. Is that true? If so, why? I don't really understand why the Palo ...

Dual Boot Detected

Hi All, Any idea why PA firewall does generate the below error? domain: 1receive_time: 2020/06/25 08:34:48serial:seqno: actionflags: 0x0type: SYSTEMsubtype: generalconfig_ver: 0time_generated: 2020/06/25 08:28:13dg_hier_level_1: 0dg_hier_level_2: 0dg_hier_level_3: 0dg_hier_level_4: 0vsys_name:device_name: vsys_id: 0vsys:eventid: generalobject...

Resolved! Logging to Panorama and Splunk

I am standing up Panorama and not sure where to send logs. I currently have my firewalls sending logs to Splunk via a syslog server, and I want to keep getting logs into Splunk. Is there a best practice or recommended config? Option 1. Send firewall logs to Panorama and then from Panorama to SplunkOption 2. Configure firewalls to send to both Pa...

Slow Google searches on 9.0

Recently we changed to 9.0 code. We are running decryption on our firewalls. I've seen some very slow google searches recently, and a few errors when searching all while using chrome. Eventually the page will load the search if I wait long enough. It's almost like chrome is failing the search at first, and then succeeding? Wondering if...

Sec101 by L4 Transporter
  • 16936 Views
  • 23 replies
  • 0 Likes

Resolved! Delay on initial connection with globalprotect session

I have a vm-100 on azure. I configured it to route all traffic from globalprotect client, no split tunnel. I noticed that when I browse a site, the initial connection takes about 5 to 10 second to show the first page but it's fine after the initial connection. Even the pan management page has the same issue. Any idea how do fix this?

Overlapping destination subnets over IPSEC

Hello,I have following scenario. I have a two IPSEC connections to Oracle Cloud. The destination IP range is the same on both networks.IPSEC A - dest IP range 10.1.6.0/24, security zone Oracle1IPSEC B - dest IP range 10.1.6.0/24, security zone Oracle 2LAN - 192.168.0.1/24 Static routing:10.1.6.0/24 to IPSECA10.1.7.0/24 to IPSECB I have created a...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels