General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 270 Views
  • 0 replies
  • 1 Likes

Require assistance to install AWS on minemeld

Hello all,

 

I cannot install aws.AMAZON miner when I add it with the default config all minemelds is not responding and the minemeld's service is looping

curl -k 'https://ip-ranges.amazonaws.com/ip-ranges.json' works

 

the default config.

 

the miner.

 

Pro

...

minemeld-default-config.PNG
minemeld-miner.PNG
minemeld-looping.PNG

how to delete panorama config logs

we have set retention period for 1 day , but still config logs are showing of last 5 days in Panorama. As per tac this is the bug as they are currently analyzing the file.

Also tried to delete all config logs of Panorama through cli but no luck. 

Below

...

Deepak_K by L3 Networker
  • 5490 Views
  • 5 replies
  • 0 Likes

Object add in bunch of policies.

Hi All,

 

An object (IP address: 192.168.1.2 as an example) configured in the PA firewall and assigned it to 50+ security policies as a source/destination address.

 

Now, I want another object (IP address: 192.168.1.5) assign into the same 50+ security p

...

ChiragP by L2 Linker
  • 3262 Views
  • 3 replies
  • 0 Likes

How to allow a specific file extension

I work for a K-12 school district that uses a program that reads books to students.  The file extension is .kes (KES is a file extension that belongs to Text Files of Kurzweil Educational Systems) and is blocked in our file blocking profile as an Enc

...

almay by L2 Linker
  • 3967 Views
  • 2 replies
  • 0 Likes

PA config replication through Panorama

Hi All,

 

I am looking for a method to replicate the configuration of one of our virtual firewalls to a physical firewall through Panorama device-groups and templates.

 

Let me explain the setup:

We have a core firewall with multiple vsys enabled, and one

...

VarunRao by L2 Linker
  • 2944 Views
  • 3 replies
  • 0 Likes

Vwire interfaces are flap

We have a Paloalto connected in vwire mode Cisco ASR1 is  connected on PA eth1/21 (Primary) and Cisco ASA (Primary)is connected on PA eth1/22. Same as Cisco ASR2(secondary) is connected on ethernet1/23 and Cisco ASA(secondary) is connected via Ethern

...

Joshan_Lakhani_0-1595447238139.png

Overlapping Proxy ID"s

I have a IPSEC site to site VPN with a Check Point firewall.  In the Palo Alto I have networks / proxy ID's that overlap each other?  Can this cause issues?

 

For example I have:

 

Local                                                   Remote

192.168.50.

...

DMZ server is not accessable by Global protect

Hello,

 

I have one server belongs from the DMZ zone.
Example:-
server ip- 2.2.2.2
source ip for VPN user - 1.1.1.1
VPN zone
DMZ zone

There is 2 scenerio:-
policy(1) - I have created a policy like:-
sourcezone- VPNzone
source ip - 1.1.1.1
destination zone - DMZ

...

Global Protect in Linux error

Hi,

 

We are trying to connect to our VPN using Global Protect client in a Fedora laptop. We have tested the following articles: https://docs.paloaltonetworks.com/globalprotect/4-1/globalprotect-app-user-guide/globalprotect-app-for-linux.html#


but we ar

...

BigPalo by L4 Transporter
  • 9394 Views
  • 6 replies
  • 0 Likes

Best way to load balance to ISP with Global Protect

We have an active/passive 3020 and in from of them we have an A10 Load balancers. We want to change our current configuration so we can have a load balance between our two ISPs.

 

What is the best practice regarding the Palo Alto? Which would it be the

...

JUrenaG by L1 Bithead
  • 7125 Views
  • 7 replies
  • 0 Likes
  • 23637 Posts
  • 107 Subscriptions
Top Liked Authors
Labels