General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 431 Views
  • 0 replies
  • 2 Likes

Resolved! GlobalProtect 5.0 for iOS 12 and User Certificates

I have several customers (and my homelab) that leverage user certificates issued from Active Directory Certificate Authorities as a second authentication factor.  Since upgrading to the new 5.0 client for iOS, the client errors out on connection to t

...

Resolved! SIP ALG

I just want to make sure I'm thinking through the use of SIP inspection. If I have the sip application configured on a security rule, then the ALG will be in affect.

If I have defined port-based services in a security rule with no sip application defi

...

Interface flap email alert on Palo Alto 8.0

Hi Folks,

 

I want to configure email alert for interface flapt i.e ( subtype eq port ).

 

On email server profile under custom log format if I add $subtype eq port , would it be sufficient to trigger alert ?

 

 

Resolved! SMTP Authentication

Hi guys,

 

According to this document, at the bottom, it states that SMTP authentication is currently not supported. This was in 2014, so does anyone know if this is still not supported?

 

https://live.paloaltonetworks.com/t5/Learning-Articles/How-to

...

split tunnel issue

I have set up a GlobalProtect gateway in Panorama (software version 9.0.0.0) and configured it for split tunnel, however the configuration is not applying to the firewall (PA850 - software version 8.1.6)

Palo Alto Home Server Network

I currently have a family property that consists of 3 adjoining properties and structures, we retain a private home server network and are looking to protect it utilizing Palo Alto Virtual Appliance, but are being told in order to do so we must be a

...

boernerj by L1 Bithead
  • 2632 Views
  • 5 replies
  • 0 Likes

Resolved! Security Policy Search Results

We have a 3020 firewall with version 8.0.10 and need to allow a new server access to resources in other zones. An existing server, 10.100.100.10 already has this access, so I need to mimic the access of this server.

 

In Objects\Addresses there is an e

...

Analyzing Email Traffic on Palo Alto

We have our in house mail server which is behind the Palo Alto, all incoming and outgoing email traffic go through it. Can we analyze the email traffic and get following information?

 

Sender

Recipient 

Attachment File name

Attachment File Type

Email Subje

...

HA Data Link Ethernet vs IP

Hi,

 

When I configure HA for data link I use Ethernet when devices are directly connected to each other, but sometimes in the field I see people using IP for transport but the devices are directly connected to each other. Why are they doing this? Ther

...

junior_r by L3 Networker
  • 7075 Views
  • 6 replies
  • 0 Likes

Customer Experience (CX) Day on LIVEcommunity

October 1st is Customer Experience (CX) Day, and Palo Alto Networks is celebrating you, our customer! Join us in this celebration.

 

Tells us:  

- What great customer experience means to you. 

OR

- About a LIVEcommunity member or Palo Alto Networks e

...

CX-Day 2019 LIVEcommunity (1).png
reaper by Cyber Elite
  • 3675 Views
  • 3 replies
  • 3 Likes

VPN problem

Hi
i have a problem. i have configured vpn ikev2 ipsec. When test vpn with CLI command( test vpn ipsec tunnel [name]) vpn gets up. But when other side try to connect, vpn do not get up.

Also when i check system logs this logs appears:
'IKE phase-1 negot

...

URAN_725 by L1 Bithead
  • 3741 Views
  • 3 replies
  • 0 Likes

PXE boot

I'm trying to get pxe boot to work through the firewall. Now options 66 and 67 are available in palos dhcp server but I can't get it to work anyway.

 

Besdies normal dhcp options I've setup option 66 with IP and ip-address and option 67 with ASCII an

...

  • 23698 Posts
  • 110 Subscriptions
Top Solution Authors
Labels