General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Global Protect and google play traffic from mobile

Hi all ,

I am running PAN OS 8.0.19 and GP 4.1.12 and users cannot access google play store while they are connected to the VPN from androids .

I have tried with spli tunneling including 63 subnets from google and I have tried full tunnel defining i

...

Resolved! SSL Exclude Option Missing in 8.1

Hi Community,

I noticed, that in 8.1.x (7,8,9, 9h4) the "SSL Exclude Option" in Device > Certificate Management > Certificates is missing.

The PAN-OS 8.1 guide mentions this option on page 198, and you can see it in a screenshot in this KB point 7:

ht

...

Resolved! LSVPN Satellite Deny specific subnet to Publish to gateway

In LSVPN VPN setup how can we deny specific subnet to not advertise to gateway.

I have selected Publish all static and connected routes and I want to deny some of static routes of them , how can we do that ?

I know we can disable public option manual

...

Resolved! Address object was saved with invalid IP address.

Hi All,

PA-5050 PAN-OS 7.1.24

Is it expected behaviour?

Thanks,

Myky

Multicast with Chromecasts confusion

Background:

I have a trust zone on ethernet1/2 192..168.1.0/24 and an iot zone on ehternet1/4 10.10.10.0/24 and I want to be able to cast things from endpoints (mobile phones and laptops) to the chromecasts on the iot zone.

It seems like multicas

...

Resolved! Ubuntu

Hello, can anyone tell me what version of Ubuntu I should use for MineMeld ?

Autofocus MineMeld - how to access output node that requires authorisation

I need to create O365 IP/URL EDLs but when I try to access the output nodes I get "Unauthorised" message unless I sign into AutoFocus in the browser. Needless to say I cannot do the same on a firewall. How do I allow anonymous connections to a feed i

...

Config Files Backup

Hi.

I have PA850. According to this link (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm7yCAC) I configured backup with local Superuser account. Everything is OK. But then I created new Admin Role named backupadmin and ne

...

High memory usage on Palo Alto

I have an issue with a Panorama VM indicating high memory usage.

Using the following resources:

top - 10:59:58 up 82 days, 1:07, 1 user, load average: 4.22, 3.89, 3.87
Tasks: 156 total, 1 running, 152 sleeping, 0 stopped, 3 zombie
Cpu(s): 39.2%us, 1.8%s

...

Resolved! Data Center Firewall - Monolithic vs Virtualized

This is purely theoretical and does not represent a real network.

You can think of this as on prem or public cloud:-

Monolithic

This design utilizes 3 physical firewalls that are embedded in a data center fabric
• Perimeter
• B2B
• DC
The main focus of my

...

Development Palo Alto Networks firewall

I have supported Palo Alto Networks firewalls since the 3.x days. I currently support many of these firewalls, many including HA with all of the licensed features, linked to Panorama, Minemeld and other products.

I desire a lab setup so that I can t

...

Resolved! Email Link Verification causes unsubscribe action on URL

We are a provider that sends newsletters to subscribed customers. We have an unsubscribe Link in the our emails so that customers can easily unsubscribe by just clicking on the link.

We have noticed that IP Address registered by Paol Alto Networks te

...

Resolved! DHCP Relay Query

I have a query regarding dhcp relay , I L3 interface on switch where ip helper is configured then there is interconnect between core switch and firewall question is do we need to enabled dhcp relay on palo alto interface connected to core switch

PA units wont populate EDL

At the end of last week I installed MineMeld. Configured 0365 miners. When I access the miners via their URL I recieve an IP list.

Next I configure EDL on two of my PA units. For this test I configured the miners to be anonymous. Tested the UR

...

GlobalProtect Problem IOS 12.3.1

Hello,

Recently some of my Iphone / Ipad devices running on IOS 12.3.1 can no longer connect via GlobalProtect (AppleStore Version: 5.0.7). On the other hand this same account works on a Win10 computer. Do you have an idea of the problem met?

PAN f

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free