This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4225 Views
  • 0 replies
  • 0 Likes

Invalid portal error in GlobalProtect

have the GP 4.1 client installed on a computer with Windows 10 Enterprise v2004 64bit, which when wanting to connect to the company portal, marks me as invalid portal, everything related that I have found on the network has already been reviewed but without exical.The curious thing that this computer worked well with a Windows 7 32bit, the probl...

Need some guidance on the VM series implementation

Hi there,I have inherited the current network and need some help in replacing the firewall for like to like. We have a MPLS network connecting all our offices and an external firewall managed by the ISP. Traffic from all sites go out via the external firewall. I am replacing an old ASA with the PA-VM Series firewall as an internal firewall in on...

Network.png
nitz-sw by L0 Member
  • 3651 Views
  • 4 replies
  • 0 Likes

ISP Failover With Controlled Failback

We have a pair of PA-3020 setup with HA and ISP Failover. PAN OS 9.1.3-h. I am not using PBF. I want to connect our VOIP phone switch to the firewall. Our VOIP phones connect to a cloud based PBX. I setup a new VR for VOIP with ports for ISP1, ISP2, and Inside. Failover / Failback works fine. Here is the problem. ISP1 goes Offline and the teleph...

Authentication Policy Use Case

Here use case and wondering if this is feasible. 1. User Bob is already authenticated and connected(tunnel VPN) to firewall A with GlobalProtect with his account "Bob".2. User Bob need to access critical ressource behind the same firewall A with, however, his privilege account "Bob-Priv". Problem, its look like the authentication policy is neve...

Useability suggestion: Add Context sensitive Right Click Menu to PANOS UI.

I suggest PA should add context sensitive right click menus to the web UI in PanOS(Both Firewall and Panorama) As an example, when a Security Policy rule is selected right click should popup a menu with actions that can be done on the item.Like "Add Above", "Add Below", "Clone", "Enable", "Disable", "Delete", "Move", Etc Basically just add a men...

KellyM by L1 Bithead
  • 2574 Views
  • 1 replies
  • 0 Likes

Admin roles and Detailed Log View (spyglass)

Hello Community!I'm trying to create an admin role that gives a user access to the Monitoring functionality. But with full access to Monitoring only, they are not able to open the details for each log entry - Detailed Log View.I've granted Privacy access too, but that didn't help.Anyone know what specific access is needed to be able to click on ...

Quick Question.

Just a quick question... Why didn't I buy Cisco instead? Pretty sure Cisco wouldn't keep me on the phone for hours... Multiple days in a row without so much as answering the phone once. Pretty sure Cisco wouldn't ignore a sev 0 ticket for days in a row... Palo Alto cant keep an SLA... Palo Alto got me feeling like a chump. Looks like we go back ...

Captive portal not working

Hi Everyone,Im trying to configure captive portal on PA 220 for users trying to access any website should redirect to captive portal and after authentication via username and password they will get access, but anyhow im unable to achieve that. Below are the configuration i have done on my PA220.1) configure the user object for local database aut...

Allowing any traffic that comes from a specific palo alto device

Hello Assume 2 local firewalls in a set of firewalls, all managed by same Panorama. One is protecting ATM firewall and the other is DC Server firewall.ATM 's get their IP 's from branches so they are very random, and routing is basically like 10.0.0.0/8 ge 27 le 30 and 10.0.0.0/8 ge 29 le 30. So we dont know IP, Range, subnet for a firewall rule...

Questions about panorama login account

I check the panorama dashboard and on the widgetslogged in admins there have tow admin account login the panorama.panorama-admin and panorama,soWhat is the difference between account panorama admin and panorama ?and time idle for logged in admins?

Felixcao by L3 Networker
  • 5312 Views
  • 6 replies
  • 0 Likes

Jquery Version - JQuery 1.2 < 3.5.0 Multiple XSS

Hi teamWe received this vulnerability in the report by our vendor for our PA"According to the self-reported version in the script, the version of JQuery hosted on the remote web server is greater than or equal to 1.2 and prior to 3.5.0. It is, therefore, affected by a cross site scripting vulnerability"and solution for this its saying "Upgrade t...

Resolved! Possible Reason Why Palo Rejecting SMTP traffic containing attachments.

Hi All, I was . Over the past couple of days we have seen a increase in delayed or non delivered emails that contain attachments greater that approx. 3mb that are being rejected or non delivered to the mailbox transport server. It is now a permanent issue and we have identified that the firewall is the cause of the issue but I am unsure how to f...

ccarter by L1 Bithead
  • 9497 Views
  • 2 replies
  • 0 Likes

Minemeld Indicators Number not equal Firewall DAG Members List

Hi everyone, I tried to reference all the Windows RODC (Read-Only Domain Controllers) using a custom script. The script is working fine : it queries our Active Directory, and returns a JSON list of RODC. Each indicator listed by the script looks like this : { "indicator": "ip.add.re.ss", "value": { "comment": "This is a comment", "confid...

GREMAUDO_0-1594979428303.png
GREMAUDO_1-1594979557569.png
GREMAUDO_2-1594979751746.png
GREMAUDO_3-1594979868103.png
GREMAUDO by L1 Bithead
  • 2873 Views
  • 1 replies
  • 0 Likes

Minemeld taking up a lot of disk space opt/minemeld/local/trace/*

/opt ( 5 Gb ) is running at 80% full, most of which is consumed by /opt/minemeld/local/trace/*. Can some housekeeping be done or do we need to expand the storage, is it just an area that going to grow and grow ? Is there a Housekeeping job that can be ran to clear out the Trace folder. any suggestions ?

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks