This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Resolved! Issue with User-ID mapping

Currently in User-ID, one ip address is associated with three usernames.

Two of which are the hostnames of the computer and not the user so when the staff tries to access something, they are getting blocked. Do you have any suggestion to fix this? Cle

...

SAML Auth overriding LDAP Groups?

HI Guys,

 

We have implemented Azure SAML authentication for global protect users. There is no group filtering on Azure site. 

We tried limiting ldap groups in the:

1. SAML Auth profile on palo alto

2. Gateway > Agent > Client Settings

 

Inspite of the rest

...

(Module: device) Commit failed

Operation
Commit All
 
Status
Completed
 
Result
Failed
 
Details
  • (Module: device)
  • Commit failed

 

Doesn't give any more information, how do i know what it is failing on.

Pushing policy from panorama 9.0.5 to firewall on 8.1.8-h5

raji_toor by L4 Transporter
  • 5627 Views
  • 4 replies
  • 0 Likes

Resolved! Global Protect trying to connect somewhere else

I am seeing this atlease with my system and has not been reported by anyother user. I have seen this happenin before on my system with older version of GP(4.X) also. But it ould resolve on system restart or after few tries but not today.

GP seems to t

...

raji_toor by L4 Transporter
  • 8423 Views
  • 2 replies
  • 0 Likes

Global Protect slow on Windows, normal on Mac

I am neither a network nor a VPN specialist. So forgive my supposed rookie questions.

 

I work as an editor and log into our company network with Global Protect to access our CMS. Since a few days I have the problem that the download speed is extremely

...

Global protect Private address 0.0.0.0

Hi,

 

We were checking the GP users in PA and we realise that the "Private IP Address" for some users is 0.0.0.0. Another users have the correct private range (10.90.x.x). VPN is working fine but i would like to know why PA assigns 0.0.0.0

BigPalo by L4 Transporter
  • 2601 Views
  • 2 replies
  • 0 Likes

PA-220 for 100 Windows Computers

Hello Team,

 

I'd like to know if anyone is using PA-220 for around 100 Windows Computers, with all features enabled (App ID, Decryption, Threat Prevention, URL Filtering, etc). 

 

All partners here in Argentina say I need to buy PA-850, mainly because o

...

akbronka by L1 Bithead
  • 3070 Views
  • 4 replies
  • 0 Likes

HA Pair licence

Hi,

I have to 2 PA firewalls with HA Pair licence onboard. I want to reconfigure them to work separately. Is it possible? What licence says about that? If it's written somewhere in docs, where I can find it?

Resolved! FaceBook Games

Is there a way to effectively block FaceBook games?

I found this: https://live.paloaltonetworks.com/t5/General-Topics/facebook-games-block/m-p/23675
but this is 2013 and not all games are Zynga's.

Resolved! Configure MAC based Security rule for SSL VPN User

Hi Team,

 

Is it possible to create a security rule based on Source MAC Address instead of Source IP Address?
My requirement is, I want to create a rule for our SSL VPN users which is having our Company owned devices only connecting to our network.
Do yo
...

SahulH by L3 Networker
  • 5311 Views
  • 1 replies
  • 0 Likes
  • 23698 Posts
  • 105 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks