General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 281 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3165 Views
  • 2 replies
  • 14 Likes

Resolved! Any way to export pan_packet_diag.log?

Hi,

 

When generating a flow basic log - is there any way to export just the pan_packet_diag.log using scp? According to https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClpFCAS the file wiil be included when exporting a TSF, b

...

Resolved! Using regex in defining a group address object

I'm defining a new group address object which should include addresses of several different tags (e.g. "Tag_1", "Tag_2", etc.).

When trying to define the match field I cannot find a way to actually do that. I'm not sure it's even supported. Whatever p

...

Resolved! Commit process

From Panorama during commit process , just typing "commit" and press enter will do commit to all device group/template ?

deepak12 by L3 Networker
  • 3675 Views
  • 2 replies
  • 0 Likes

Palo Alto Vulnerability Points (Urgent Action Required)

Hi Team,

 

Can anyone provide your valuable suggestion here please.

Below are the VAPT points shared by customer and solution provided :

 

PA Vulnerability points (For reference please find attached pdf) :
1) ssl/tls protocol initialization vector implemen

...

Resolved! How to Block browser extensions

Hello,

 

Does anybody know if it is possible to block specific browser extensions from being downloaded?

I would like to block the searchencrypt browser extension.

 

Thanks

 

Any way to get this scenario configured?

I have GP Gateway license on my PA-5020 firewalls. I would like to allow 200 corporate owned samsung phones to access the VPN and block all other mobile phones. what are all the options I have to selectively allow them other than having a certificate

...

Explicit and Implicit Allowed / Denied Apps?

I am trying to understand the relationship between apps and how rules for specific apps affect the access of other apps.

 

I was reading this article: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClirCAC

 

In there, it uses t

...

777GE09 by L0 Member
  • 4214 Views
  • 2 replies
  • 0 Likes

Logging to Panorama VM

To cut a long story short.....

 

we lost Panorama VM. (ESX)

i removed firewall (3020) from Panorama management and selected "disable Panorama Policy and Objets" in Device\Setup\Panorama settings.

imported policy and objects before disabling.

 

built new VM

...

panlog1.png
panissue2.png
Mick_Ball by L7 Applicator
  • 2475 Views
  • 2 replies
  • 0 Likes

single vsys to multi vsys setup

Hi

 

So i have a cluster setup as a single vsys

I want to introduce a vendor GP setup - i have some vendor that want remote access to equipement and I want to allow them that access but   limited to just that.

 

 

I want to get around the accidental giving

...

Dual IPsec Tunnel to same destination with ECMP

Hi everyone,
I would like to set up two ipsec tunnels to the same destination. I know I could do this by assigning the tunnel interfaces different metrics in the VR. But if I do that, only one tunnel will forward traffic at a given time. In our setup

...

topology.PNG
  • 24091 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels