General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 194 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 876 Views
  • 0 replies
  • 0 Likes

Negate networks within an object group

Hi,

is it possible to negate certain networks within a rule?

 

example.. src (192.168.0.0/16) and dest (10.0.0.0/8) action Deny

but want to negate dest 10.200.0.0/24 in the same rule so that 192.168.0.0/16 cannot talk to 10.0.0.0/8 but can talk to 10

...

PA_nts by L3 Networker
  • 813 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama will not upgrade as a stand alone.

Hi guys new here. The problem I'm having is my panorama will not upgrade. Of course I get the "requires a content version of 8529 or greater". I've look that up and found out I needed to download the latest content(APPS and Threats), did that but I g

...

Myoung1 by L1 Bithead
  • 1234 Views
  • 5 replies
  • 0 Likes

Resolved! Exempt alerting for specific threat

We have an open wifi network and do see lot of coinhive spyware threat alerts. Recently a user genrated in excess 30000 email alerts for CoinHive JavaScript Detection. We don't want to block the user and also the external IP is not single one. Firewa

...

raji_toor by L4 Transporter
  • 5081 Views
  • 6 replies
  • 0 Likes

Help with XML api device configuration

I'm looking for a solution to automate sdwan deployments so I'm trying to do a couple of things with this api call:

 

1 - create the layer3 subinterface interface

2 - give the subinterface an ip and next hop ip

3 - enable sdwan on the interface and g

...

Resolved! ION CLoudGenix Devices Offline

Hi Team, 

 

Has anybody experienced any issue with CloudGenix ION devices where you can SSH onto the device but actual on the Prisma Cloud Portal all the CG devices shows offline ? 

 

I have one of this issue where I can remote into every single ION

...

H.Suthar by L0 Member
  • 1164 Views
  • 3 replies
  • 0 Likes

Decrypt STARTTLS SMTP protocol but not blocked Virus File

The mail server resides on the network inside PaloAlto.
I am trying to add a feature to use STARTTLS for SMTP/25 from the mail server to the Internet.

I implemented STARTTLS decryption (Forward Proxy) on the PaloAlto and sent an email with Eicar Virus

...

Hogewo by L1 Bithead
  • 881 Views
  • 2 replies
  • 0 Likes

Block Exchange ECP externally

Hello team,

 

We are experiencing with our hosted exchange server on the cloud. Despite efforts from our Server team to block ECP access from external networks, it remains accessible. The team has suggested blocking ECP for external networks only.

I

...

GP issues after a fail over test

So we have an annual BCP fail over test, during the fail over test when we shut the primary TOKYO PA 850 it fails over to PA 850 SEC, however when we connect to the VPN we cannot on our TOKYO we are not able to connect. 

 

I'm a bit newbie on PA and

...

weezy by L2 Linker
  • 597 Views
  • 1 replies
  • 0 Likes

RJ-45 10GB interface and cat7 cable

Hi All,

Anyone deployed a ngfw (pa-3430) using the 10gb ports with a cat7 copper cable yet? same process as normal cat5/6 connection no additional changes needed?

 

have a deployment for a client with fiber sfp but they did not purchase the sfp modul

...

PA_nts by L3 Networker
  • 591 Views
  • 1 replies
  • 0 Likes

Resolved! Captive portal 403 forbidden

Hello,

I've configured a new Captive portal but when i'm trying to reach it I receive 403 forbidden.

The CP is enabled on the inside interface where the traffic is coming in.

The zone have the user id enabled.

The interface have the Management profil

...

rustdesk for remote support

Hello Friends,

                    I have a question considering your valuable openinion regarding remote support applications.

For financial issues I am moving to use an Open source "RustDesk" for remote supprt in my company.

I can see that the appl

...

issue about sdwan bgp routing

HI , Bro

I setup a hub-spoke sdwan on my pnet lab

Hub  can learn site1 and site2 internal routing , but it can not pass  these  routing entry  between  site1 and site2.
which cause hub and spoke(site1 and site2) can access  each other  ,   but the spok

...

  • 24010 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels