General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 487 Views
  • 0 replies
  • 0 Likes

Resolved! Allowing Ads

I have a user who would like access to be able to view ads. This may or may not be a good practice, but I would like to know if this is able to be granted. For example, we granting access to something such as Facebook, I can create a policy and grant

...

Resolved! Authentication - Users are not matching with groups

Hello, 

 

I have a problem with authentication. I have configured a PAN integrated agent. 

 

I can see users authenticated. At the same time, the firewall is getting the groups from AD. But for some reason, the users are not matching with the groups. So

...

iscott by L2 Linker
  • 7096 Views
  • 3 replies
  • 0 Likes

bulk export of security zones on Panorama

Hello,

 

I am trying to get a list of all the security zones configured on all the firewalls from Panorama. Is this possible? whats the most efficient way of achieving this? I have over 50 devices and exporting security zones from each one is tedious.

...

Using Secure LDAP profiles

In March 2020 Microsoft will be releasing a Security Update which will disable the use of LDAP connections (cleartext over port 389) to/from Windows Servers - only LDAP Secure connections (default port 636) will be accepted by Windows Servers after t

...

PS007 by L2 Linker
  • 2945 Views
  • 1 replies
  • 1 Likes

Resolved! Palo 5220 (8.1.6h2) Throughput

All

We are pulling data from an a remote server to a SQL server, that sits behind the Palo, using SMB and FTP. The file size is 40G.

ALL links between the 2 servers are verified at 10G.

The transfer rate is being measured between 75MB and 120MB., apprx

...

mhs_coad by L0 Member
  • 2229 Views
  • 1 replies
  • 0 Likes

Netflow export into IPsec tunnel...

I'm trying to get netflow to export through a vpn tunnel on my PA-VM V9.1 firewall. My route and policy into the tunnel for the target collector is working because I can ping the collector through the tunnel. So I figure I need to change the default

...

megrez80 by L2 Linker
  • 5354 Views
  • 5 replies
  • 0 Likes

Troubleshooting GlobalProtect disconnects

I have a couple of users that say their active connections are suddenly disconnected. What is the best way to determnine the cause of the disconnection? Again this is an active session not a time out

jdprovine by L4 Transporter
  • 7280 Views
  • 3 replies
  • 1 Likes

Resolved! Captive Portal LDAP Authentication redundancy

Hello.

 

I have a Captive Portal that uses next Authentication Profile:

  • CP_Auth

Where:

Authentication Sequence:

  • CP_Auth - Auth_Mode_1, Auth_Mode_2

Authentication Profile:

  • Auth_Mode_1 - LDAP_1
  • Auth_Mode_2 - LDAP_2

LDAP Server Profile:

  • LDAP_1: 10.10.1.101, 10.10.
...

JuanAn by L1 Bithead
  • 4831 Views
  • 4 replies
  • 0 Likes

Resolved! Panorama IPsec tunnel to AWS

Need to create IPSec tunnel in Panorama hosted in Google Cloud that is managing our PAN-850 in customer datacenter to our cloud environment in AWS.  FYI-we dont have Palo Alto in AWS.

Resolved! unsigned LDAP

Hi,

As we know Microsoft is going to disable use of unsigned LDAP port 389 in March 2020.

Fortunately I don't have LDAP profile on my PA firewall but I have Kerberos. Will there be any impact ? and do I have to change it ?

 

Thank you

Konrad

  • 24089 Posts
  • 116 Subscriptions
Labels