This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4243 Views
  • 0 replies
  • 0 Likes

PA VM-100 trail license

Hi Everybody, I am having PA-100 VM on my EVE-NG enviroment, eveythin is workin fine but not logging anything.I have read somewhere that getting a trail license will do the magic, yet i tried to search for on how to get a trail license, i am not getting any result. Can anyone help me on hoe to get the trail license or if there is any alternat...

Resolved! SSH SSL Issues Reported From Vulnerability Assessment

The results of a vulnerability assessment is reporting the following issues with PAN firewall with version 7.1.6. Is this due to the settings in the decryption profile? Any direction would be helpful. Thank you. CVENAMEDESCRIPTIONSOLUTION SSL Medium Strength Cipher Suites SupportedThe remote host supports the use of SSL ciphers that offer med...

almay by L2 Linker
  • 13987 Views
  • 2 replies
  • 0 Likes

DHS AIS Miner

Has anyone gotted the DHS AIS Miner working in MineMeld? We have an account with DHS and I configured the Miner with our subscription id as well as our certs. The miner shows all green (see attached screen-shtot), but I am not getting any indicators. Not sure what I am doing wrong, and DHS doesn't support MineMeld. I noticed that Unit 42 wrote t...

Jon_Irish by L1 Bithead
  • 20858 Views
  • 14 replies
  • 0 Likes

Resolved! Can i integrate two different AD that has two different root domains?

One of my customer is been acquired by a much bigger company. they are in the middle of AD migration from their old root domain to new root domain. Their firewall has existing AD integration with old root domain AD, with user mapping and WMI Authentication. and users are using it actively. For me to add a new AD integration sitting in a new diff...

FIPS 140 and CC enabling

Couple of questions on FIPS. When you enable FIPS140 on a Palo it wipes the device. Can you just reload your last saved?Can a FIPS140 enabled device talk to a non-FIPS device over an ipsec tunnel provided the cyphers are compatible?FIPS disables PAP. System wide? or Just for authentication to the FW? Our Radius doesn't support CHAP.Anything else...

Decryption Certificate.

Hi Team, I have created certificate which is used for Decryption purpose. I have installed in Windows and Mac and its working.How do i install that in linux (Ubuntu or Kali ) ??Please share your insights .

Policy rules organization

hello Everyone hope everything is doing well. questions for the experts on paloi have 260 rules on my palo alto environment and they are subdivided in zones and i would like to make things more organized on my rules .question is the rules more high used on the palo should be always first ? like more verbose rules or it doesn't matter where they...

publishing a site website service with ssl decryption

I have an internal server which i want to publish its service to public and need to do ssl decryption, does that means i need to do "inbound ssl decryption"?and if so, as the website is natted from outside to inside, in the decryption rule in the destination, do i put the public ip or the natted ip?

chuckles by L2 Linker
  • 4960 Views
  • 3 replies
  • 0 Likes

Release Notes in GUI

Anyone know what's up with the release notes links in PAN-OS or Panorama GUI? Some of them are taking me to an XML response page and there is apparently an email circulating on REN-ISAC that the GlobalProtect links for 5.1.2 download a *.solitairetheme8 file (I can confirm that I'm seeing this behavior in the release notes link in Panorama this...

jsalmans by L4 Transporter
  • 2808 Views
  • 1 replies
  • 0 Likes

Minemeld configuration via TAXII output to Qradar

Hi All, i've been trying to configure the taxiii output in minemeld following the tutorial of Qradar posted here but with no success.I am running docker minemeld version, everything is fine until i try to add the url: https://hostname/taxii-discovery-service from Qradar TI module and get the following error: There is a problem connecting to the ...

macintos by L1 Bithead
  • 3226 Views
  • 1 replies
  • 0 Likes

Resolved! Limits in Old Palo Alto models

Hi, I am trying to find out the number of objects and groups of objects of the old models PA-3020, PA-3050, PA-3060 and PA-5050. In the new models, these data appear in the product comparison of the Palo Alto website, so I understand that these limits are static and do not vary depending on their capacity. However for the old models I only find ...

PA220 Update - Cannot use management interface

Hello,First question and first foray into Palo world from Cisco ASA and I'm stuck.I am trying to update a couple of PA220's, we cannot use the management interface and therefore can only use an interface connected via DHCP to our ISP.I have got the interface getting a DHCP address (have set Ethernet 1/1 as Layer 3 interface), I created a zone (...

Scott64 by L1 Bithead
  • 4200 Views
  • 2 replies
  • 0 Likes
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks