General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 418 Views
  • 0 replies
  • 2 Likes

Blocking Google Images

Howdy everyone,

 

We have a strict internet usage vlan where users can only hit an Approved List of URLs that we manage through Panorama.  The issue is that some of these fights reference Google as part of the CDNs so we've had to allow them in to the

...

Email Alert Subject Line.

Hi team,

 

Is it possible to customise the Email alert subject line ..??  

For Example : 

Default - Sub: "The VPN XYZ tunnel is down"

Customised - Sub: "The VPN XYZ tunnel is down, Need immediate attention".

Resolved! Palo Alto keep client IP

Hi,

 

Is possible to keep in Palo Alto the client IP although PA is doing a source NAT to reach internet?. A service in the cloud needs to know the client IP. Something like XFF. 

BigPalo by L4 Transporter
  • 2339 Views
  • 1 replies
  • 0 Likes

Resolved! Traffic log shows decrypted for blocked traffic

 

We have not enabled ssl decryption for specific subnets.

When I see the traffic logs I see ssl decrypted is checked and traffic is denied.

 

I verify that I see decrypted flag for all traffic that is blocked in url category.

 

Need to know reason for thi

...

MP18 by Cyber Elite
  • 2702 Views
  • 3 replies
  • 0 Likes

Resolved! PanOS version number

Am I correct that the naming scheme is considered Major Version . Feature Release . Maintenance Release - hotfix?

8.1.6-h3

BoDollis by L1 Bithead
  • 5388 Views
  • 2 replies
  • 0 Likes

Packet Descriptors spike

Hi All,

I've been collecting and plotting CPU, Session, Packets Descriptors, Packets Per Second, as well as some other metrics. Once in a while I see a spike on the Packet Descriptor graph.

According to KB article How to Interpret: show running resourc

...

abraun by L1 Bithead
  • 14893 Views
  • 7 replies
  • 0 Likes

Resolved! PA-220 Issues with Routing between LANs (Layer 3)

Hello everyone!

 

I am brand new to Palo Altos and firewalls in general, so I'm sure I have made a couple obvious mistakes, but hope to learn.  I have inherited a PA-220 that is now needed to be put in place between us and other connections (no interne

...

PlanFirewall.PNG
Druke by L1 Bithead
  • 11715 Views
  • 6 replies
  • 0 Likes

GlobalProtect - How Are you Using?

We have had our Palo 3020 along with GlobalProtect for about a year now, and we continue to struggle with all sorts of GP issues. I'm curious to know how are you all using GlobalProtect?

 

One Issue - Our strategy was to use GlobalProtect as an Always-

...

Resolved! new panorama vesion 8 legacy adding disk

Hi,

 

newly deployed ESXi vm panorama 8.0.2

By default free space is 11gb this is ok.

Then trying to add a new disk for exmpla 150gb.

This is working with version 7.1 new panorama.

 

Can we also make this work with new deployed 8.0.x panorama (legacy mode)

 

...

PanIst by L3 Networker
  • 8832 Views
  • 8 replies
  • 0 Likes

Safe Search Issue

Transparent safe search is not enforced for networks which are using the PA box for DNS proxy.

 

I have enabled Safe Search tick in URL filtering. Still no go.

 

We have enforced with local DNS servers and that is working. However the interfaces using PA

...

Proxy.jpg

PA-850 - how to protect

Hi

 

If I wanted to protect a PA850 from unknown devices connecting.

 

so 1 port to the local ISP.

6 ports for laptops to directly connect.

How / what is the best way to make sure only pre defined laptops can connect.

Mac filtering ??? Think that is easily

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels