This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

How the authentication will happen for GP if no Group Name and Group Password haven't configured

Hi Team, I just want to know on how the authentication will happen and IPSec connection will be established if we haven't configured X-Auth "Group Name" and "Group Password" under GP Gateway settings. As i see that it will use the Certificate provided by the 3rd party VPN Client. So but i am bit confused on how to understand this scenario. Can y...

SahulH by L3 Networker
  • 2463 Views
  • 1 replies
  • 0 Likes

Resolved! OSX update and Decryption

I've installed our Root CA cert in the "System" keychain, and have it marked as trusted. I can successfully decrypt web traffic from a MAC running Mojave. No problems there. The problem comes in when I try updating the OSX or even check for updates from the CLI. When I run "softwareupdate -l" in terminal, In the logs on the firewall it ap...

Sec101 by L4 Transporter
  • 9791 Views
  • 8 replies
  • 0 Likes

Resolved! Issue with User-ID mapping

Currently in User-ID, one ip address is associated with three usernames.Two of which are the hostnames of the computer and not the user so when the staff tries to access something, they are getting blocked. Do you have any suggestion to fix this? Clearly AD is pulling this information. Do I need to adjust something on Active Directory to fix this?

(Module: device) Commit failed

OperationCommit All StatusCompleted ResultFailed Details(Module: device)Commit failed Doesn't give any more information, how do i know what it is failing on.Pushing policy from panorama 9.0.5 to firewall on 8.1.8-h5

raji_toor by L4 Transporter
  • 6823 Views
  • 4 replies
  • 0 Likes

Resolved! GlobalProtect "You are not authorized to connect to GlobalProtect Portal" Error

Happy Thanksgiving all, I just updated from 8.0.12 to 8.1.4 on 11/20. I was able to connect to GlobalProtect from the time I upgraded until about 6 hours later. I now get the error "You are not authorized to connect to GlobalProtect Portal". Initially, I thought this may be licensing, but it is not system wide. It currently only affects myse...

Resolved! Global Protect trying to connect somewhere else

I am seeing this atlease with my system and has not been reported by anyother user. I have seen this happenin before on my system with older version of GP(4.X) also. But it ould resolve on system restart or after few tries but not today.GP seems to try to connect to unkown IP's to me and wouldn't connect with our corporate portal. I don't where ...

raji_toor by L4 Transporter
  • 10189 Views
  • 2 replies
  • 0 Likes

Global protect Private address 0.0.0.0

Hi, We were checking the GP users in PA and we realise that the "Private IP Address" for some users is 0.0.0.0. Another users have the correct private range (10.90.x.x). VPN is working fine but i would like to know why PA assigns 0.0.0.0

BigPalo by L4 Transporter
  • 3554 Views
  • 2 replies
  • 0 Likes

PA-220 for 100 Windows Computers

Hello Team, I'd like to know if anyone is using PA-220 for around 100 Windows Computers, with all features enabled (App ID, Decryption, Threat Prevention, URL Filtering, etc). All partners here in Argentina say I need to buy PA-850, mainly because of the Connections per second. Everybody says modern browsers triggers like 710 connections with 5...

akbronka by L1 Bithead
  • 3871 Views
  • 4 replies
  • 0 Likes

HA Pair licence

Hi,I have to 2 PA firewalls with HA Pair licence onboard. I want to reconfigure them to work separately. Is it possible? What licence says about that? If it's written somewhere in docs, where I can find it?

Resolved! FaceBook Games

Is there a way to effectively block FaceBook games?I found this: https://live.paloaltonetworks.com/t5/General-Topics/facebook-games-block/m-p/23675but this is 2013 and not all games are Zynga's.

Resolved! Configure MAC based Security rule for SSL VPN User

Hi Team, Is it possible to create a security rule based on Source MAC Address instead of Source IP Address?My requirement is, I want to create a rule for our SSL VPN users which is having our Company owned devices only connecting to our network.Do you have any other ideas to achieve the above requirements? Awaiting for your inputs !! Best Regard...

SahulH by L3 Networker
  • 6594 Views
  • 1 replies
  • 0 Likes
  • 24381 Posts
  • 123 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks