General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

User-ID - Active Directory Keeps Sending Domain DNS and NetBIOS DNS

Hi Community, Having a headache of an issue lately and I believe it to be an issue on the customer environment rather than a setting configuration on the firewall, or software issue in PAN-OS e.g. I've little experience with enterprise active directory so I learn as I go. At the moment, customer has been using the Domain DNS for User Domain sett...

Resolved! quality of premium support for a hospital during a pandemic

hey wondering if anyone else has this problem. i have been on hold for 2 hours now and counting being told to post my issues here. so i did while I wait .. might make this more enjoyable. I have opened a ticket on monday and sev2 SLA was missed once on that ticket. I escalated it like a hundred times with everyone. still no real traction on the...

Wildcard (* .) Based Policy

Hi All, I have a bit confusion about Wildcard based(*.) policy on PA firewall. If we have to apply policy for *.mysitexyz.com as destination for port 443, will there be any additional configuration require to achieve this or have to follow traditional approach like : Object --> Addresses --> Add --> Select Type 'FQDN' --> mentioned ...

Jimmy20 by L2 Linker
  • 4571 Views
  • 3 replies
  • 0 Likes

Resolved! OSPF routing error

Hello!can you help me with logs errors of devices?I set up OSPF in PAlo Alto this way:Area 0 on tunnel interface and Area 28 on interface ethernet Palo Alto.Neighbors succeeds, counters are all true. I can send a screenshot if it is needed.At the moment there is an error each 3 minutes on both devices (Palo Alto and Cisco).This error means that ...

melnikov by L1 Bithead
  • 10732 Views
  • 4 replies
  • 0 Likes

Bluecoat GlobalProtect

Hi guys, Does anyone have any news with Bluecoat working with GlobalProtect? There is a Bluecoat proxy before the firewall, and GlobalProtect through this proxy does not work. Without it, it works. Just want to know if anyone has any information at all with configuring Bluecoat with the Palo for GlobalProtect. RegardsJack

MineMeld on Ubuntu 18.04

Hi, Is MineMeld supported on Ubuntu 18.04? There doesn't seem to be any documentation or mention of Ubuntu 18.04, we've ran into issues trying to set it up as we were trying to rely on the 16.04 guides but Ubuntu 18.04 has changed quite a bit from previous versions. Are we going to have to drop to 16.04? Any help would be appreciated. Th...

MoeJomha by L0 Member
  • 23203 Views
  • 9 replies
  • 6 Likes

Resolved! Cannot add PA-VM to Panorama management

Hi there, I am trying to add a new firewall to panorama management following this guide:https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/manage-firewalls/transition-a-firewall-to-panorama-management/migrate-a-firewall-to-panorama-management.htmlAt step 5.2; Export or push device config bundle, when I choose this option, I cannot see...

Application vs Services

Hi Team,I have a couple of questions in application vs services.1. I have to permit a list of services for a particular traffic. In those list some of them are already in the applications like DNS, IMAP, Pop3 and I need to create some services with custom port. Now do I add these applications and the custom services in the same rule or does it h...

Resolved! Global Protect Pre-Logon

I'm setting up Global Protect Pre-logon and I have been able to setup the portal and gateway fine. I have hit a brick wall as the only way I have got this working is to log into the laptop and then I log out of the laptop and then the pre-logon is working. When I reboot the laptop and try to connect it is always saying disconnected. I'm using PA...

Resolved! System - Engine - Logs - CIDR is not a valid IP indicator ERROR

When I try to integrate minemeld IOCs into MDATP, only IP can't sync to the MDATP. Domain/URL and SHA256 are all good.Check the Logs in System-Engine, found following errors, but don't understand why have this error? 2020-10-05T15:57:27 (10424)node._push_indicators ERROR: Microsoft-Defender-ATP-IP: error submitting indicator 101.231.124.6/32: Ci...

HAO.BAN by L2 Linker
  • 7773 Views
  • 5 replies
  • 0 Likes

Resolved! DNS issue over Global Protect split tunnel

I have an SFTP server. When users are inside the office they have to connect it via private IP. When they are at home they should go via public IP. I am using the same DNS server in Internal and Global Protect as well. I have excluded the private SFTP IP in Global protect split tunnel, so that users won't get connect with this IP, instead they h...

Master key on secondary standby panaroma

Hi allI have two panaroma in ha and two firewall in ha.I configured master key on primary panaroma and i want to configure it on secondary.what is best way to configure1. Make primary panaroma suspend and make secondary activeor2. do failover of panaroma and configure key

Problems with IPSec tunnel

Hello,I have a PA VM100 which hangs behind a dynamic public IP and it creates an IPSec tunnel to a PA220 with static public IP. So the tunnel can only be established by the VM100. On the PA220 I have activated "Enable Passive Mode" at IKE Gateway -> advanced Options. DPD Interval 5 and Retry 5.I also set up a tunnel monitor and gave the tunn...

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels