General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

General - PA 5220

Hi I have in logs this messageType - SYSTEMSubsystem - Generalopaque: Number of hints on disk has exceeded 5000 due to log forward failures. Someone may have had this error ? Mr.P

Resolved! VPN remote desktop connection deep inspection

Hello Bros, In our deployment we had to give access for few employees to ms-rdp to their work PCs to do remote work staff.recently we started to receive some complains regarding connections for all rdp's and other collaboration services through the VPN. while we were trying to investigate the ms-rdp rules logs, we found that we have...

Emails with PDF Attachments converted to winmail.dat

We currently have a PA220 running 9.1.5 and a strange situation occurred on Monday where emails with PDF attachments sent via outlook 2016 from a local client to office365 Online Exchange and the recipients were receiving the email as winmail.dat. Has anyone see this behaviour and Is there anyway to check if Wildfire was converting the attachmen...

File blocking not happening

Hi team, I have a file blocking profile for upload direction for all type of applications and file types.I am using Decryption as well, Only in Google Drive File blocking is happening in so weird manner.Pdf's and jpegs are getting blocking if only they are in less than 1MB, if they are more than 1MB files are getting uploaded.I see the traffic i...

Subinterfaces on Hyper-V

Hello,I tried to set up PA -100 VM on hyper-V but I have a problem with trunking. I have to have configure subinterfaces on the Palo VM site. I added tagged VLANs on the switch side but I can't configure this to work on the hyper-V side. Meybe someone have some example how to configure this from the Hyper-V side? Reagrds

Resolved! Static IP configuration

I have some question regarding static IP given by ISP and how to configure it on the firewall as the external interface IP. ISP has given me IP of X.X.X.120/27. Next hop gateway is X.X.X.97 How would you configure this on firewall, because the other IP addresses in the /27 range appear to be used by other businesses, not mine Seems like incorre...

ce1028 by L4 Transporter
  • 5539 Views
  • 3 replies
  • 0 Likes

Unable to disable HTTP & TLS evasion

Hi Team, I have enabled antispyware allow profile for HTTP & TLS evasion, but still we are getting alert log, any reason. How to fix this. Configured above setting, please help to solve this issue.

rbabu0_0-1608216677507.png
rbabu0 by L1 Bithead
  • 2321 Views
  • 1 replies
  • 0 Likes

Resolved! How to connect users to their domain via GlobalProtect

Hello, We need a solution to join the users first to their Domain via Global Protect and after that client MUST be able to reset/change their password.We were thinking of using Pre-logon, however, this requires machine certificate and customer is not willing to spend anything on this.Is there a way to implement the request? Kindly provide some K...

Master key problem on a PA-220

I have a standalone PA-220 on v9.1.6 and I'm trying to set my own master key on it. I'm getting this error: Operation Failed request -> master-key -> on-hsm unexpected here request -> master-key is unexpected request is unexpected It looks like it thinks I checked the HSM checkbox but of course that's not possible (grayed out) on a PA-2...

ccvega by L1 Bithead
  • 2593 Views
  • 1 replies
  • 0 Likes

security policy source user strange behavior

HelloI am using ldap users as source user in security policy.The policy defines who can access http-service and https-service to the internet.After the Firewall there are about 500 PCs and about 10% PCs stop to browse the internet every 20-30min, pressing F5 in the browser seems to solve.The only thing that I understood is that the problem is al...

Inter VR Routing

We have a PA 3220 with two VRs, one VR is TEST and the other is VR is PROD.Each VR has a public facing interface, eth1 is PROD Andy its IP Address is 103.143.195.245/32 and eth2 is TEST with an IP address of 166.206.187.82/32. There are internal and DMZ interfaces that belong to either VR.I have a requirement for a user on the PROD to access a D...

Chopper by L1 Bithead
  • 6305 Views
  • 4 replies
  • 0 Likes

Issues with Global Protect

Good morning,My company uses Global Protect for its connection to our corporate network when I work remotely. I recently been having issues where it says its connected, but only part of the applications are able to access the network. Skype works, I can see the local drives, access Projectwise, but Outlook (Microsoft exchange) keeps asking for a...

Regarding monitoring of internet connection

hi ,im using PA-3050 with Software Version 9.1.3-h1my question : i need mentoring the our internet connection Is it settled or not ? Have we got to the maximum limit of the contact or not ? you support tp me is highly appreciated

YOOG887 by L1 Bithead
  • 3475 Views
  • 3 replies
  • 0 Likes

Resolved! Reason why domain URL category was changed?

I have a domain with a lot of subdomains. Two days ago URL category of all of this subdomains was changed from Computer and Internet info to Grayware. Is it possible to get information what was the reason of this change ( for example request from another customer or some PaloAlto automatic tool which saw some strange activity on one of this subd...

pkopec by L0 Member
  • 2620 Views
  • 1 replies
  • 0 Likes
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels