General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

New LIVE AMA event, LIVEcommunity Team Roundtable!

If you are curious to know more about how the LIVEcommunity works, have a chance to chat with community team members, or ask a non-technical question? Now’s your chance! The floor is open for all you burning questions now through June 24. The LIVEcom...

ama-graphic.png
jdelio by Community Team Member
  • 271 Views
  • 1 replies
  • 4 Likes

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 18501 Views
  • 41 replies
  • 32 Likes

GP-AD user password expiry

When setting up a Global policy object for a Paloalto globalprotect user/group , the maxpwdage attribute does not match the, the password expiry date sent for Paloalto user, This can be confusing to know when the password actually going to expire for...

pwdpilicy.PNG
pwdexpiry.jpg
pwdlastset1.jpg

PA-500 SSL decryption decrypt-error session end

I apologize of this is a dumb question as I know that some sites will have decyrption issues, but is it normal to have a lot of traffic log entries with decrypt-error as the session end reason? None of our users are complaining that they can't get to...

gwosad by L0 Member
  • 1474 Views
  • 4 replies
  • 0 Likes

traffic flow

Hi, I have two zone (trust and trust),for trust to untrust traffic flow and untrust to trust , do I need to create two security rules ? Thanks

simsim by L4 Transporter
  • 899 Views
  • 7 replies
  • 0 Likes

New to the Training and Community

Hello All, As the title states, I am new to Palo Alto training and the Community. I have started the lab Firewall 7.1: Install, Configure, and Manage (EDU-101) and downloaded the lab guide. I would like to login to a device as it states on step 3: "3...

plosey68 by L0 Member
  • 509 Views
  • 2 replies
  • 0 Likes

Resolved! WannaCry - Kill Switch & DNS sinkholing

Why Palo is not sinkholing DNS queries to the kill switch URLs? Currently if I run a DNS lookup request for the kill switch URL, it come back with the valid DNS response. shouldn't this be sinkholed? When the guy "accidentally" found the kill switch,...

Fengrui by L2 Linker
  • 6988 Views
  • 5 replies
  • 0 Likes

Resolved! Blocking All Internet Traffic from certain PCs

I have several older machines (XP) that are used for special purposes that cannot be be upgraded. Even the hardware cannot be upgraded or replaced (running on old dell dimenion desktops). These machines do not need access to the internet but they are...

jharlow by L3 Networker
  • 1789 Views
  • 13 replies
  • 0 Likes

Resolved! malicious domain

Hi,What is the benefit if we use sinkhole instead of just blocking malicious domain resolvingThanks

simsim by L4 Transporter
  • 1036 Views
  • 5 replies
  • 0 Likes

Resolved! Security Policies Clarity

What is the difference between pre rules and post rules ? None of my colleagues could answer this question upto my satisfaction.Can I expect expert comments ?

cmyakal by L1 Bithead
  • 908 Views
  • 5 replies
  • 0 Likes

Setting up Policy to allow all access to a squid proxy

Hi Still a beginer with the PA. I have a universal rule that allows from any zone my internal ip address to ip address group that has by proxy addresses in it. For applicaiton I have http-proxy - this covers a lot of portsdefault urls from my test bo...

slowness in traffic

Hi,Users complain about the office365 outlook connectivity ,slow submission of email . From PA prespecive what need to be verified and make sure there is nothing from the PA side . Thanks

simsim by L4 Transporter
  • 602 Views
  • 2 replies
  • 0 Likes

How many NPCs do you have install in your 7k?

Hello Community members, For those who are using 7000 series chassis, how many NPCs are installed in the chassis? Are all of the NPC have interfaces connected to the up/down stream routers/switches? What kind of latency are you experiening when the i...

Resolved! LAN users cannot reach GP users

Hi All, I've one inquiry where the client used to have an issue where the GP users can reach the LAN users but not vice versa.Users in LAN and GP are on the same zone (Trust) but only GP can ping the LAN. The tunnel of the GP doesn't have an IP addre...

WannaCry - how to protect our system with help from PANOS?

Hello Is it a way to help protect our Windows systems from attacs from internet/lans using url protection (or other technics)? According to https://mobile.twitter.com/msuiche/status/863284743940575232 it's using hardcoded url so it could be possible....

_slv_ by L4 Transporter
  • 2050 Views
  • 14 replies
  • 0 Likes