General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 303 Views
  • 0 replies
  • 2 Likes

Resolved! HIP logs review

Hi,

 

Need your insight !!

We have few VPN portals to meet HIP checks ( laptop - Domain and anti virus ) 

I could see the HIP logs in the HIP Match ( that means host passed the HIP match ?)

Or those logs that shows HIP match passed or failed ?

 

Any keyword

...

Resolved! Panorama Error

Getting below error in Panoram's  system logs :

 

Panorama has lost connection to its peer, no log will be forwarded

 

Though from Panorama all devices looks connected .Verifed the device status from panorma.

 

Anyone facing similar issue  ?

deepak12 by L3 Networker
  • 8044 Views
  • 4 replies
  • 0 Likes

NAT PPTP VPN

Hello, im trying to set up a NAT rule for a PPTP VPN tunnel.

I have set it up like this:

Source: untrust

Dest. zone: untrust

Source address: Any

Dest. address: lets say 20.20.20.20/32

Service: any

Source Translation: None

Dest-Translation:20.20.20.20/32

 

Secu

...

holten by L1 Bithead
  • 3395 Views
  • 1 replies
  • 0 Likes

TLS 1.3 support

Hi everybody,

any news regarding change of decryption from passive to proxy mode to support TLS 1.3 decryption?

Thank you,

Jan

Palo Alto lab devices

Hi guys,

I was assigned to work on a project with involves working with Palo Alto appliances a lot. I have never touched such a firewall before, so I am planning to get two (or more) devices for my home lab and experimental use.

 

Do you think the PA-20

...

Question about Global protect Pre-Logon Issue

Hi,

 

I configured GP pre-logon method, But it’s only working in administrator mode even though the user is part of administrator group, it’ not working for normal users.

 

I followed below KB article,

https://knowledgebase.paloaltonetworks.com/KCSArticle

...

GlobalProtect.jpeg

Resolved! Trade-in of PaloAlto Policy

My current model of PA will be end-of-support soon.

Thus, anyone could guide me what should we do to replace boxes for the supported model ?

 

Anyone know the policy of trade-in old boxes with supported boxes ?

Thanks in advance.

Vorleak

 

Vorleak by L0 Member
  • 4085 Views
  • 2 replies
  • 0 Likes

PA-3020 SSL Decryption Query

Hi, I have enabled SSL decryption (forward proxy) on our PA-3020 firewall. The certificate is generated from our CSR and is installed on our PA-3020. I have set up a separate forward trust and forward untrust certificate. The forward trust certificat

...

PA Configuration File Format Conversion

My organization creates PA firewall configurations in "set" format as they are easier to read and peer review.  It is very cumbersome to then put this style of configuration into the firewall itself. Is there a program/utility that can convert this t

...

How to get Applications using XML API

I am trying to get a list of applications, or a single application using the XML API. I have tried the following:

 

api/?type=config&action=get&xpath=/config/shared/application

api/?type=config&action=get&xpath=/config/shared/application/entry[@name='ic

...

Resolved! Panorama -Commit

I am new to Panorama.Can someone tell me difference between following  :
Commit -> Pust to Devices
Commit -> Commit and Push.
Is panorama pushes whole running config or just change (e.g add object or policy) ?

  • 23650 Posts
  • 107 Subscriptions
Top Liked Authors
Labels