General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Global Protect with RSA SecurID and Group Mapping for Security Policy

I have setup Global Protect with RSA SecurID authentication. I would like to use the Active Directory groups of these users in my security policy to then allow or deny access to resources based upon their membership.

I have configured the group map

...

Site-to-site VPN with Strongswan (opensource)

Hi all,

I wonder whether anyone has successfully configured site-to-site IPSec VPN tunnel with CalAmp LTE Fusion device (a cellular mobile router). Somehow I cannot establish the vpn tunnel under different configurations and I know it is running opens

...

Upgrading from a pair of PA3200 which had Global Protected renewed a month ago to a pair of PA3220's

We are looking to upgrade our current Palo Alto firewalls and only renewed our Global Protect licence a month ago. I assume that I can transfer the licence across to the new firewalls or recieve a refund for the 11 months left to use against the new

...

Resolved! can we log urls for deny rule?

I am trying to configure a sec policy so it will show the url log though the traffic is blocked. has anyone tried it? Please let me know.

thanks.

Panorama using Variables with DHCP server

Ciao,

I'm using variables in Panorama in order to use one Template for all firewall remote site deployment.

However in the DHCP server configuration I'm able to use variables as primary DNS server (i'm usign PAN as DNS proxy).

Any Idea?

Thanks

2 Output to the same destination

I need 2 output to Azure Sentinel, one for domain and the other for IP.

The first output for IP is working

I add the second output for domain = the first output stop working.

Is it normal behavior ? Where should I look ? How can I fix it ?

THanks

MineMeld with Office 365

Hey forks!

I would like to add the office control functionalities in minemeld, but I cannot find a way to add it, no configuration that I apply collects data, and I no longer know if I am doing it badly or it does not work. Could you help me? Thank

...

Resolved! URLHaus complete list help

I am trying to pull the complete list from URLHaus (https://urlhaus.abuse.ch/api/) and specificly the CSV feed. (https://urlhaus.abuse.ch/downloads/csv/)

The problem is this. The feed is huge! Over 200k right now, so the PAN will not take it because

...

session end reason "Threat" for url blocked log

Firewall is showing session end reason as 'Threat' in traffic logs for the traffic blocked under url filtering profile. this is really causing lot of noise in our SIEM tool. how can i remediate this?

thanks.

Resolved! Active PA license expiring soon

We have PA in active passive mode.

Seems Active PA license is expiring soon.

Due to our internal process we can not get license in time.

If active PA license is expired will it work normally in Active passive mode?

Resolved! Link or Path monitoring function

If I have not enabled any type of HA, can I still enable Link or path monitoring to trigger a firewall (not in HA) to go in suspend or non functional state ?

Unable to Launch Global Protect from Start Menu after upgrade to ver 4.1

After I upgraded my Global Protect Client to version 4.1 i was unable to launch Global Protect from the start menu, but had to launch Global Protect using the system tray icon. Has anyone else experienced this issue or have a resolution.

ImportError: No module named _sqlite3 on RHEL 6.7

Looking to install MM on RHEL 7.6

# cat /etc/*elease* NAME="Red Hat Enterprise Linux Server" VERSION="7.6 (Maipo)" ID="rhel" ID_LIKE="fedora" VARIANT="Server" VARIANT_ID="server" VERSION_ID="7.6" PRETTY_NAME="Red Hat Enterprise Linux Server 7.6 (Maip...

Resolved! LDAP auth for the WEB UI access clarification

Hi All,

Why do we need step 3 mentioned in the KB below for the WB UI authentication with LDAP?:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGuCAK

Why do we need to create a local user? Won't Palo be an LDAP proxy (gra

...

False Positive (virus/win32.wgeneric.vnujo)

Dear Support,

Our customers have been reporting that palo alto is identifying our software as malware.

application ms-ds-smbv3
virus/win32.wgeneric.vnujo
ID 219797367

How can we proceed to whitelist our software permanently?

Thank you

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

Resolved! Global Protect with RSA SecurID and Group Mapping for Security Policy

Site-to-site VPN with Strongswan (opensource)

Upgrading from a pair of PA3200 which had Global Protected renewed a month ago to a pair of PA3220's

Resolved! can we log urls for deny rule?

Panorama using Variables with DHCP server

2 Output to the same destination

MineMeld with Office 365

Resolved! URLHaus complete list help

session end reason "Threat" for url blocked log

Resolved! Active PA license expiring soon

Resolved! Link or Path monitoring function

Unable to Launch Global Protect from Start Menu after upgrade to ver 4.1

ImportError: No module named _sqlite3 on RHEL 6.7

Resolved! LDAP auth for the WEB UI access clarification

False Positive (virus/win32.wgeneric.vnujo)

Wildcard URL for Non-HTTP/HTTPS traffic

WEBUI Session Timing Out

Allow all web addresses with .gov and .edu extensions

Traffic logs not showing since last PA update to 11

Understanding some counters from pow performance during high CPU troubleshooting

Re: What is still missing or needs to be improved in PA Next Generation Firewalls ?

Re: Allow all web addresses with .gov and .edu extensions

Re: Wildcard URL for Non-HTTP/HTTPS traffic

Re: Unable to Upgrade from 11.1.3 to 11.1.13

Re: SSL Inspection issues with GlobalProtect users

Unlock your full community experience!

Resolved! Global Protect with RSA SecurID and Group Mapping for Security Policy

Resolved! can we log urls for deny rule?

Resolved! URLHaus complete list help

Resolved! Active PA license expiring soon

Resolved! Link or Path monitoring function

Resolved! LDAP auth for the WEB UI access clarification