General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Port change on Gateway from default SSL to custom.

Hi,

 

Due to limitation of using port 443 we want to use custom port for connections to gateway from satellite.

I believe changing port on portal  config for gateway then doing destination nat on gateway should fix this issue.

so satellite can connect to

...

Unable to Login

Hi All,

I am unable to login into learning center as guest. As I am already registered as guest. Every time I am going to login its  showing a error. Can any one help me with this?

1.JPG
2.JPG

Inbound Listening Ports on GP Connected MAC's

Has anyone noticed the ability to make inbound connections to a GlobalProtect connected MAC OSX system?  We had recently enabled split-tunneling thanks to the big bad video conferencing applications. But quickly discovered that on MAC and Windows sys

...

recross by L1 Bithead
  • 2744 Views
  • 2 replies
  • 1 Likes

Resolved! Multiple NAT External to single internal IP via PAT

i have two external IP addresses listening on port 22.  NAT rule does a Port translation for this.

External IP1:22 -> Internal IP141:2222 (PAT from port 22 to 2222)

External IP2:22 -> Internal IP141:2223 (PAT from port 22 to 2223)

 

Traffic to/from exter

...

PPPoE Interface Settings For PA-220 Eircom

Hi team, 

 

Just posting this if others setting up PPPoE on new PA-220. There was one or two check boxes to complete so hopefully this saves others some time. The ISP for this one was Eircom, and used default PPPoE settings for that ISP. 

 

 

 

 

 

 

ethernet

...

eth18-1.JPG
eth18-2.JPG
eth18-3.JPG
gp.JPG

SSH session issue in GP

Hi,

 

We are having a strange issue. We have GP for 12 users. 

Users with MacOS launch a ssh session to a jumpbox. This ssh session is working fine but when user has inactivity the session goes down, and then try to launch a new ssh session but its not

...

BigPalo by L4 Transporter
  • 1396 Views
  • 0 replies
  • 0 Likes

Resolved! Configure Captive Portal--URL Filtering

Running a PA-820 

Software Version8.1.10

 

I run a bandwidth usage report that shows ip addresses using bandwidth, but no domain username.  How can I get the non-Domain devices such as byod to authenticate to the network before gaining network access? 

...

Block file-sharing in ms-rdp

Hi Palo Alto community,

 

Hope all of you are doing well.

May I ask for assistance in blocking file-sharing in ms-rdp? here is the scenario:

1. User is connected to the globalprotect VPN
2. Vpn user uses ms-rdp to remote Virtual PC behind the firewall
3. W

...

Bug: 8.1.7/8.1.8 PA-5200 AUX Ports

Just FYI,

There is currently a bug within 8.1.7 and 8.1.8 that renders the AUX ports inoperable on the PA-5200 series, which depending on your configuration can cause issues. The Bug ID is PAN-105737 and it's been fixed in 9.*, but you might want to h

...

BPry by Cyber Elite
  • 8020 Views
  • 10 replies
  • 2 Likes

Resolved! Trying to trackdown O365-api-any-any.txt file for MineMeld

Hi All,

I am in the process of deploying MineMeld for O365 endpoints and I am completely stuck.

 

Following this article:

https://live.paloaltonetworks.com/t5/minemeld-articles/enable-access-to-office-365-with-minemeld-updated/ta-p/224148 I it mentions  

...

ccarter by L1 Bithead
  • 4403 Views
  • 3 replies
  • 0 Likes

Resolved! Disney+ domain being sinkholed as DNS tunneling domain

This morning I starting noticing that my threat logs are filling up with

sinkhole actions for the following

Suspicious DNS Query (search-api-disney.svcs.dssott.co)

Suspicious DNS Query (dssott.com)

 

 

Threat Type
spyware
Threat Name
DNS Tunneling Domain
ID
109
...

Resolved! Manage Traffic within two vsys

Hi,

 

How to route traffic between two vsys on same firewall? Currently when I am trying to put policy, I am not able to see required destination under security policy which belongs to other vsys on same firewall. Does it require some specific configur

...

Vikashh by L2 Linker
  • 3119 Views
  • 2 replies
  • 0 Likes
  • 24182 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels