General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Cisco ASA to Palo Alto

Hi Team, we recently migrated from cisco ASA to Palo Alto 3220, where for one of the policy in cisco ASA has " access-list inside-egress extended permit ip any any", And this access-list is attached to the access-group to the interface "inside". as you can see below."access-group inside-egress out interface inside"as per my understanding from ci...

policies

I have created two policies with the same zones the first rule I have added any source and any destination profile alerts.the second rule I have added any source and any destination profile outbound GroupIn Monitor logs, I seem the traffic is not hitting the first rule but it's redirecting the second rule

MINEMELD-WEB FATAL

Hi all,I have installed minemeld on REH 7.7. When i check the status i read this: # sudo -u minemeld /opt/minemeld/engine/current/bin/supervisorctl -c /opt/minemeld/supervisor/config/supervisord.conf status minemeld-engine RUNNING pid 3022, uptime 0:08:33 minemeld-supervisord-listener RUNNING pid 3021, uptime 0:08:33 min...

Resolved! Difference between the dev/sda2 and dev/md2

Dear Team,When we run the command > show system disk-space.1 - Then some times firewall show dev/sda2 and dev/md2 what is the difference between these two files. I have gone through some documents but couldn't find any answer.2 - I have checked this document for clear space (How and When To Clear Disk Space on a Palo Alto Networks Device)htt...

Problems with drive with offline files via GlobalProtect VPN

I'm running Windows 10 Enterprise verison 1709, GlobalProtect 4.0.6-7, and Windows domain. I have files on a network drive (J:) that I've made available offline. When I connect to my network via VPN, I can't find a way that will allow me to access the files on J: that are not available to me offline. Since I connect to the VPN after I've logg...

GlobalProtect VPN gives error until I repair client. Why?

Hello,After covid, we started to work from home. But my problem is, I have to repair client whenever I restart my computer. Otherwise, It stucks in this screen until I repair it. Log says, "(T2668) 04/05/20 15:07:07:396 Debug( 268): CPanSocket::onConnect - return error code = 10049."Honestly, I have no idea what problem is.

Screenshot_1.jpg
Untitled.png

Resolved! Public Ip config with ISP router

Hi,we have a palo alto connected to ISP managed router for lease line connectivity, wherein we have 2 public ip rangesx.x.154.x and x.x.39.xour side i create subinterface and added one ip 154.78 and 39.201, and on the ISP side they configured only 39.X and allowed IPs from both these ranges.Now if i try ping to any ip from 39.X range am able to ...

multiple ISPs for GlobalProtect

Hello I have read "How to Configure Dual ISP Network with GlobalProtect VPN using a Virtual Router and Policy-Based Forwarding" (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClJeCAK) since we had exactly the same challenge a few days ago. I solved it using a second virtual router.If I follow the setup as shown in the...

Resolved! External Feed URL Configuration

hello all, I am looking for configuring my own external feed URL for blocking malicious/blacklisted domains/IP addresses. There are lots for external public feed URLs which includes blacklisted IPs/domains but somehow we do not have control on it. So i am looking to configure something which will be in my control. This is something that i can mo...

Vikashh by L2 Linker
  • 8982 Views
  • 5 replies
  • 0 Likes

App-ID(s) for Office 365 hybrid Exchange?

Looking for the App-ID(s) that would be necessary for traffic between my on-premises Exchange 2016 management server and Microsoft's server. This is really only for moving mailboxes to the cloud. May only just be SSL traffic as that is all I really see in the monitor.

Configuring Miner for JSON

Hello, I'm needing to build a miner to mine a JSON file found here -> https://api.binaryedge.io/v1/minions. In building my prototypes I've tried two different types. 1. age_out:default: nullinterval: 257sudden_death: trueattributes:confidence: 100share_level: greentype: IPv4extractor: scannerfields:indicator: ip_prefixprefix: source_nam...

Sign-In Window Pops Up Every Time I Flip to Different Computer Account

I've installed Global Protect on my Mac. On this Mac, I have a personal User Account and a work User Account, which I flip back and forth to a hundred times a day. But each time I flip to the other account, up pops a little GlobalProtect window requesting that I sign in. So I have to dismiss this little window a hundred times a day, even when I'...

GlobalProtect-Popup.jpg
WebDev17 by L1 Bithead
  • 5830 Views
  • 9 replies
  • 0 Likes

Monitor GP-Count with SNMP

I monitor our GP-Portal with snmp for summary of connected users. Now I configured a second portal on the same device. The snmp monitors only all GP-users over all portals. How its possible to divide the monitoring value into portal a and b?

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels