General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Changing password over GlobalProtect

Hi team,Does anybody know if there is any compatibility issue between Palo Alto and Aruba Clearpass for changing users' passwords?When we use Microsoft NPS, GlobalProtect users will be prompted for changing their passwords when the passwords are expired. However, when we use Aruba Clearpass instead of Microsoft NPS it doesn't work. The only work...

Resolved! Block microsoft updates by blocking ms-update app ?

Hello all,What is the best way to block microsoft updates on the PA ?I have seen the url filtering suggestion but was wondering could we just drop via ms-update app ?https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClbvCAC TksDermot

Resolved! Miner Node Connection Broken

Hello Folks, I've had MineMeld running successfully since August of 2018 with a number of nodes all working flawlessly until recently. One miner in particular is exhibiting an error after a drawn out polling session. Eventually, the miner goes into an error state and when hovered I receive the folowing: It's odd because this miner is still ...

Untitled.png
Capture.JPG

I need to block the file with it's classification content.

I am new in Palo alto I would need to block the file with it's classification data, in attached screen shot there is AdNew file and its classification on properties section is "Deepika_Classification" Label is there I need to block as per it's label. We are sending a classification name from the api but we need to search file if file contains i...

vivekbajpai_0-1607446416873.png

Panorama 10.0 Issue with Risk Factor displaying as zero

Hey everyone! So one of customers recently migrated to PAN-OS 10.0. They have a couple of firewalls, a M200 as a log collector and a Panorama appliance. The ACC initially doesn't show any data, which it did with previous releases. We must switch in a drop down menu and select the DataSource: Remote Data Device, which apparently loads data from t...

PA-VM (v8.1.10) shows ETH interfaces at 10G and need them to be 1G

Running GNS3 on VMWare Workstation setup.I have PA-VM installed running v8.1.10 code.Everything runs well but seeing that my interfaces are running at 10G (by default) and I can't change that.In Network-Interfaces-Ethernet-Advanced - "Link Setting" - Link-Speed and Link-Duplex are "grayed" out and set to AUTO.Using CLI my only option is "auto".T...

change log retention days

hello all, I'm trying to change the log retention days but i'm not sure about the below:- Does it required a restart or rebooting?- Does it have any impact on the firewall configuration or the services configured on it? Your help will be really appreciated,

HA, Active-Active or Active-Passive

Dears Expertise,we have 2 PA-3220, and we think to configure HA between those devices,now what is the best practices for mentioned topic Active-Active or Active-Passivejust i want to know what is the essential difference between them, when i need to use Active-Active or Active-Passive

Feature Request: alert rule message template for ALL destination types

Allow for creation of message templates for ALL destination types, not just email.Would like to customize SQS message and all other messages formats when sending an alert.Business value:Allows customers to customize and manage event messages from alert rules to be properly formatted for the customer's use cases/integrations.

Video Streaming/MSteam Video hazy

Hello,Recently we upgraded the OS from 8.1.13 to 8.1.16 .After that we found that there is delay in video streaming sites especially Youtube .Apart from that our video enabled meetings are hazy for all the internal users.I am not sure whether its related with upgrade issue or any other scenario.Please suggest

Farabi by L0 Member
  • 2593 Views
  • 2 replies
  • 0 Likes

Enabling IPv6 on untrusted Ethernet1/1 interface brings down IPv4

I tried working with Palo Alto support but there hours don't match with my schedule. I decided to start using IPv6 on my local LAN and WAN. I setup a DHCP server using MS Server and created a scope. Devices on the network are getting two IPv6 address. I configured the IPv6 on PA-220 and hit the enable button and committed and immediately lost...

bryanscott_0-1607189276233.png

Unable to change the admin of the virtual PAN OS 9.0 credentials on VMware Lab

Hello Community,I have set up my Virtual Palo Alto Firewall on a VMware virtual machine. The issue is that when I start the Virtual FW , it asks me for the credentials. I enter admin/admin , then it requests to change the password. I enter the new password/confirm password. After that, when I try to login with the new password, it says " login i...

Kevin20 by L0 Member
  • 2209 Views
  • 1 replies
  • 0 Likes

Deployment when not on domain

I've noted some laptops handed out when people went to work from home are not running Cortex XDR as Active Directory deployment of a startup script (which runs the msi from a share) was the chosen deployment method. What are my options for getting machines up to date when they don't connect to the VPN until after the machine is already started up?

TimGowen by L1 Bithead
  • 2335 Views
  • 1 replies
  • 0 Likes

Resolved! Error decompressing data stream

Greetings All Been running minemeld for quite a while but have not seen this one before. We are setting up a new threat stream from a government provider that we have been using for a while but they are upgrading to a v4 of their feed. Did everything the same as usual but getting a error "Error -5 while decompressing data: incomplete or trun...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels