This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4354 Views
  • 0 replies
  • 0 Likes

Authentication Policy Use Case

Here use case and wondering if this is feasible. 1. User Bob is already authenticated and connected(tunnel VPN) to firewall A with GlobalProtect with his account "Bob".2. User Bob need to access critical ressource behind the same firewall A with, however, his privilege account "Bob-Priv". Problem, its look like the authentication policy is neve...

Useability suggestion: Add Context sensitive Right Click Menu to PANOS UI.

I suggest PA should add context sensitive right click menus to the web UI in PanOS(Both Firewall and Panorama) As an example, when a Security Policy rule is selected right click should popup a menu with actions that can be done on the item.Like "Add Above", "Add Below", "Clone", "Enable", "Disable", "Delete", "Move", Etc Basically just add a men...

KellyM by L1 Bithead
  • 2592 Views
  • 1 replies
  • 0 Likes

Admin roles and Detailed Log View (spyglass)

Hello Community!I'm trying to create an admin role that gives a user access to the Monitoring functionality. But with full access to Monitoring only, they are not able to open the details for each log entry - Detailed Log View.I've granted Privacy access too, but that didn't help.Anyone know what specific access is needed to be able to click on ...

Quick Question.

Just a quick question... Why didn't I buy Cisco instead? Pretty sure Cisco wouldn't keep me on the phone for hours... Multiple days in a row without so much as answering the phone once. Pretty sure Cisco wouldn't ignore a sev 0 ticket for days in a row... Palo Alto cant keep an SLA... Palo Alto got me feeling like a chump. Looks like we go back ...

Captive portal not working

Hi Everyone,Im trying to configure captive portal on PA 220 for users trying to access any website should redirect to captive portal and after authentication via username and password they will get access, but anyhow im unable to achieve that. Below are the configuration i have done on my PA220.1) configure the user object for local database aut...

Allowing any traffic that comes from a specific palo alto device

Hello Assume 2 local firewalls in a set of firewalls, all managed by same Panorama. One is protecting ATM firewall and the other is DC Server firewall.ATM 's get their IP 's from branches so they are very random, and routing is basically like 10.0.0.0/8 ge 27 le 30 and 10.0.0.0/8 ge 29 le 30. So we dont know IP, Range, subnet for a firewall rule...

Questions about panorama login account

I check the panorama dashboard and on the widgetslogged in admins there have tow admin account login the panorama.panorama-admin and panorama,soWhat is the difference between account panorama admin and panorama ?and time idle for logged in admins?

Felixcao by L3 Networker
  • 5349 Views
  • 6 replies
  • 0 Likes

Jquery Version - JQuery 1.2 < 3.5.0 Multiple XSS

Hi teamWe received this vulnerability in the report by our vendor for our PA"According to the self-reported version in the script, the version of JQuery hosted on the remote web server is greater than or equal to 1.2 and prior to 3.5.0. It is, therefore, affected by a cross site scripting vulnerability"and solution for this its saying "Upgrade t...

Resolved! Possible Reason Why Palo Rejecting SMTP traffic containing attachments.

Hi All, I was . Over the past couple of days we have seen a increase in delayed or non delivered emails that contain attachments greater that approx. 3mb that are being rejected or non delivered to the mailbox transport server. It is now a permanent issue and we have identified that the firewall is the cause of the issue but I am unsure how to f...

ccarter by L1 Bithead
  • 9565 Views
  • 2 replies
  • 0 Likes

Minemeld Indicators Number not equal Firewall DAG Members List

Hi everyone, I tried to reference all the Windows RODC (Read-Only Domain Controllers) using a custom script. The script is working fine : it queries our Active Directory, and returns a JSON list of RODC. Each indicator listed by the script looks like this : { "indicator": "ip.add.re.ss", "value": { "comment": "This is a comment", "confid...

GREMAUDO_0-1594979428303.png
GREMAUDO_1-1594979557569.png
GREMAUDO_2-1594979751746.png
GREMAUDO_3-1594979868103.png
GREMAUDO by L1 Bithead
  • 2902 Views
  • 1 replies
  • 0 Likes

Minemeld taking up a lot of disk space opt/minemeld/local/trace/*

/opt ( 5 Gb ) is running at 80% full, most of which is consumed by /opt/minemeld/local/trace/*. Can some housekeeping be done or do we need to expand the storage, is it just an area that going to grow and grow ? Is there a Housekeeping job that can be ran to clear out the Trace folder. any suggestions ?

False positive alerts

A very high quantity of botnet false alerts being reported on our appliance. Using 9.1.3. Botnet report alerts as noted below: Repeatedly visited (10) the same URL 216.58.199.36/Repeatedly visited (30) the same URL 142.250.66.164/Repeatedly visited (69) the same URL 142.250.67.4 Visited malware URL tdsjsext1.life/ExtService.svc/getextparams .216...

Wildfire submittion issue

we have seen in wildfire the same file (i have verified the file hash available in wildfire cloud) is submitting multiple tiles even after the verdict is malicious from old wildfire submission.ie, wildfire dynamic update is configured for every minute and it is having the latest wildfire content, still, the same file is again submitting to wild...

Joshan_Lakhani_0-1598385227480.png

Panorama: PDF export full of HTML code

Update 2: This is almost completely fixed in 8.1.16, with only one column showing [object Object] instead of a value. See this post for details. Update 1: This is still not fixed in 8.1.12, although the issue is slightly different. See this post for details. Panorama 8.1.10 (running in VMWare ESXi 6.5 if that makes a difference) All PDF and ...

PDF-export-NAT-Policies.png
fjwcash by L4 Transporter
  • 16707 Views
  • 15 replies
  • 0 Likes

Resolved! HA setup and standy firewall has more config then active firewall

Hi Guys, I have Firewall setup where standby firewall has more config then active firewall. Right now config is out of sync and HA1 back up link is up. HA1 and HA2 links are down.What I want is the config of standby firewall on the active as well . if I click on 'Sync with Peer' , which config will be synced ? @BPry can you please help on this? ...

shafi021 by L2 Linker
  • 3623 Views
  • 3 replies
  • 0 Likes
  • 24365 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks