General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 441 Views
  • 0 replies
  • 2 Likes

TLS Vulnerabilities.

Hi

 

I am running Minemeld on Ubuntu 16.04

 

The server is starting to show up in Vulnerability Scans depsite updating Ubuntu.

 

This is a list of the Vulnerbilties.

 

TLS Server Supports TLS version 1.0TLS Server Supports TLS version 1.1Diffie-Hellm...

Global Protect Gateway

Hi everybody, I'm getting through this issue: although we have 3 gateways configured in our portal, my GP client allways connect to the same one. How to deal with this client behavior?

Tks in advance

Email Alerts for Reporting

How we can set up email Alert for report

 

We have an O365 email environment that is based on Azure Cloud.

 

looking for Email alerts for reporting and My Email ID has MFA for accessing the emails.

 

Now I have applied my Email ID in the Palo Alto 3060 for

...

Resolved! forcefully logout all GP users from gateways

Hi Anyone,

 

I'm trying to logout all GP VPN users forcefully logout from the gateway either doesn't logout users or no errors throwing on command as well

 

>request global-protect-gateway client-logout gateway gp-gateway reason force-logout user * compu

...

Karup by L1 Bithead
  • 9297 Views
  • 4 replies
  • 0 Likes

SSL Inbound Decryption and PA

Hi Everyone,

 

Learned something new from you today.

We are going to enable SSL decryption for Inbound traffic coming from Internet to our web servers.

Need to know when does PA intercept the traffic coming form Internet  to the web server which is hosti

...

MP18 by Cyber Elite
  • 2506 Views
  • 3 replies
  • 0 Likes

Eventid eq routed-OSPF-neighbor-down

 

PAN-OS - 8.1.12

 

Want to understand the below Massage and Why it occurs ??

 

>less mp-log routed.log

 

2020-04-15 09:28:05.296 +0400 TM_SPF: start full SPF calculation rid 172.16.80.16
2020-04-15 09:28:05.296 +0400 TM_SPF: Do the full SPF calculation rid

...

PAN GPA Service issue error - return error code = 10061.

PAN GPA is giving error , checking service on PC it reports stopped when I try to connect through agent.

 

Tried to uninstall and install again , did not help.

 

anyone faced same issue ?

 

 

T14992) 04/17/20 08:50:44:186 Debug( 692): CAC, name is DigitalMe

...

Resolved! Configuration of Security Profiles

Hello, 

 

I have a question related to the actions that I can configure in Security Profile. Specifically, Vulnerability Protection. 

 

What happens if I set the action as "Alert"? Will it drop the connection? Or the connection will be permitted, and it

...

iscott by L2 Linker
  • 2180 Views
  • 1 replies
  • 0 Likes

Active/Passive vs. Active/Active

I am currently working on a network redesign project with all Cisco gear. Our network engineer is opting for a complete HSRP Active/Active environment. According to all deployment documentation, HA Active/Passive seems to be the preferred methed for

...

Resolved! Need Upgrade Tips

I am planning to upgrade Panorama and my few HA clusters to version 9.0.6. Currently all these are on 9.0.3-h3.

Need your experience on 9.0.6 if anyone is already running on it. Is there any unknown issue/bug observed on this version?

I have completely

...

johnde by L2 Linker
  • 4430 Views
  • 4 replies
  • 0 Likes

Resolved! SSL Inbound Decryption and Certificate with Wildcard mask

 

Hi Everyone,

 

Hope everyone is staying home and Safe.

I need to import the certificate and the private keys to the firewall from the web servers.

We have this certificate say 

 

*.city.ca and this is associated with few websites like 

maps.city.ca. or rec

...

MP18 by Cyber Elite
  • 2991 Views
  • 2 replies
  • 0 Likes

Question about Service Route Configuration

I just inherited a PA-820 and know nothing about this device.  It's unable to connect to the cloud for updates.  Currently it's service route is set as the default (Management Interface).  I was told by support to switch it to an untrusted interface

...

Cmaddox by L0 Member
  • 2883 Views
  • 2 replies
  • 0 Likes

Cannot check for new Dynamic Updates

Hello, I have a PA-200, version 7.0.10 (I know, too old) I'm planning an upgrade to 8.1, but I understand that I have to download Dynamic Updates before upgrade, am I right? The issue is that I can't Check for Dynamic Updates, I've tried with Check N

...

emendezo by L1 Bithead
  • 4657 Views
  • 6 replies
  • 0 Likes
  • 23700 Posts
  • 110 Subscriptions
Top Solution Authors
Labels