General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! HA config sync only manually possible: Commit not synchronized

Hey. I enabled HA active-passive on a new 3220-pair. HA1a & b, HA 2 & HA backup are green and working fine so far. I can also do a manual sync, which works fine. In HA config i enabled config sync. The failover works fine too, as i tested it. But it seems, there is no HA auto running-config sync to HA-peer. In dashboard (High Availabili...

Pengsti_1-1594219641354.png
Pengsti_0-1594219554734.png

BYOD Decryption

Has anyone been succesful in using decryption on a network where most computers are not on the domain? I am working at a school where all students are bringing their own devices so we cannot push decryption certificates through group policy.Thank you

I can't see sufficient information on OpManager Dashboard

Hi everyone,yesterday we've installed OpManager in our company to monitor VPN Users of GlobalProtect,i've fully turned on everything on SNMP Side but somehow i can't see some of performance monitors like Active VPN Users,Active VPN SSL Tunnels,VPN Tunnel Traffic In and Out etc..Btw the device is PA820.So let me add my dashboard and an instance o...

WhatsApp Image 2020-03-20 at 10.45.28.jpeg
OPMonitor.PNG
Onrcan91 by L0 Member
  • 3289 Views
  • 1 replies
  • 0 Likes

Resolved! dedicated HA interface

Hello, I would like to ask if there is some way to take a packet capture in ha dedicated interfaces I know how to do it in management interface and data plane interface but not found information about how to see the traffic in this interfaces, thak you in advance.

Resolved! Authentication issue

i have recently upgrade my firewall from 8.1.16 h3 to 8.1.13 h3. When the user connected with Global protect after sometime user is unable to access the application infect global protect show it's connected. when i saw in monitoring traffic it's show user domain have change the name from abc\abc to abc.com\abc. when i disconnect the GP and aga...

Joshan_Lakhani_0-1595245686648.png

Resolved! Unable to download updates

Hello,When i download the PAN-OS or content update getting below error:- Troubleshooting performed from my side:-I can see all the services are running via the management plane.I checked the connectivity between the management interface and the internet it was working fine.I checked the traceroute from the firewall towards the update server of P...

Jafar_Hussain_0-1595613938290.png

Resolved! Any to Specific VPN Breakout

Hi, I'm having an issue. I have a catchall VPN tunnel on my Palo Alto that sends all of my traffic to a company called Zscaler. They are a cloud security company that acts as a proxy to intercept our traffic and check it before it goes out to the internet and vice-versa. However, sometimes certain exchanges don't play nice with Zscaler, such as...

dromanelli_0-1595621800306.png

Resolved! Pre-Logon Global Protect

Hi Can anyone explain the pre-logon feature that is now part of GP. Specifically how I could use it to launch AD login scripts one a user have authenticated via GP.ThanksRod

djrodb by L3 Networker
  • 12169 Views
  • 12 replies
  • 0 Likes

PA-3020 OS 9.0 either support GRE Tunneling Support

We are planning to upgrade PA-3020 devices to PAN-OS 9, please advise either PA-3020 devices can be upgraded to OS 9PAN-OS 9.x is to use new features introduced in new OS like GRE tunneling, would you please confirm either our device PA-3020 support this upgrade? Model PA-3020

why "set ssh service-restart mgmt" reboots PA-220 with 8.1.13?

Hi, My PA-220's needed some SSH changes. After these were committed locally, I ran the "set ssh service-restart mgmt" command, as the manual says, in run mode.The firewall pings for about 30 seconds, then reboots. I'm using 8.1.13. Why does it reboot? How can I get around it? I have had a ticket in for a week, and the lady working the ticket doe...

Application Square

Is anyone managing the application 'Square'? I am trying to get a better understanding how to identify the application being used for a transaction vs a website visit. A website visit to https://squareup.com/ triggers the application the same as a transaction occurring from what I can see. Definition: Square is a card reader tool and application...

clewis1 by L3 Networker
  • 4359 Views
  • 4 replies
  • 0 Likes

Require assistance to install AWS on minemeld

Hello all, I cannot install aws.AMAZON miner when I add it with the default config all minemelds is not responding and the minemeld's service is looping curl -k 'https://ip-ranges.amazonaws.com/ip-ranges.json' works the default config. the miner. Process looping.when I tried to check log : /opt/minemeld/log/minemeld-engine.log.1:2020-07-09T17:12...

minemeld-default-config.PNG
minemeld-miner.PNG
minemeld-looping.PNG
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels