General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! VPN Site a Site Palo Alto Pas de traffic retour

Bonjour

j'ai monté un tunnel vpn entre un PA-850 et un PA-220. La gateway IKE et le tunnel sont au vert.

Je n'obtiens aucuns trafic en reception dans le tunnel sur le site A. Le site B quant a lui recoit mes requetes et y repond, mais comme je n'ai pas

...

Resolved! setting security rules for vpn access for certain users?

i created a remote vpn and a vpn zone for local users , i created a security rule from vpn zone into inside but the problem is when i try to set certain access for different users , when i type the user name it doesnt auto complete it or list other l

...

chuckles by L2 Linker
  • 2226 Views
  • 1 replies
  • 0 Likes

Resolved! By using LAN unable to connect VPN

Hi Experts,

 

I have installed Global Protect VPN client. When I'm trying to connect VPN it is throwing an error "Server Certificate is invalid".

When I connect mobile internet or internet dongle to my machine I can connect VPN. But when I connect throu

...

Prasuna by L1 Bithead
  • 3267 Views
  • 4 replies
  • 0 Likes

How to get IP public of GitHub

Hi All I am considering to use Minemeld in company with Palo Alto Firewall. I tested it and I saw it support to get IP of AWS, Google Cloud, Azure but I didn't see GitHub. So how I can create custome Miner to collect IP public of GitHub. Please help

...

Resolved! Page not loading properly

Hello,

 

We have a simple rule placed at the top allowing users to connect to Netflix. However, the page is not loading properly.

 

No SSL Decryption in place. How to fix the issue?

 

Screenshot.png

Unauthorized Access

Hi All,
 
we had an unauthorised access to our firewall, after the access all the logs in the firewall have been deleted and configurations have been changed and committed. 
 
we need to which credential are used to login the firewall.
 
Now we found the i
...

Admin Roles - Read Only

I am trying to create a admin role on the PA device and select things in the webUI to be read only. When I check these items I get enable and disable options but not the read only option icon option? Is there something I am missing here?

Resolved! Getting this from Vendor device eventid eq ike-recv-p1-delete

After Phase 1 success as Responder in PA  I am getting   below event id 

 

( description contains 'IKE protocol notification message received: INITIAL-CONTACT (24578).' )

 

and ( eventid eq ipsec-key-expire )

 

eventid eq ike-recv-p1-delete

description cont

...

MP18 by Cyber Elite
  • 8682 Views
  • 7 replies
  • 0 Likes

Resolved! show vpn ike-sa gateway Corp

when i run above command it says

 

Show IKEv1 IKE SA: Total 6 gateways found. 1 ike sa found.

 

Show IKEv1 phase2 SA: Total 6 gateways found. 65 ike sa found.

 

What does above number tell us ?

MP18 by Cyber Elite
  • 3322 Views
  • 4 replies
  • 0 Likes

Resolved! Every few mins in system logs eventid eq ike-nego-p2-succ

 

We have IPSEC tunnel to vendor every few mins in system logs i see

 

eventid eq ike-nego-p2-succ

 

and ( description contains 'IKE phase-2 negotiation is succeeded as initiator, quick mode. Established SA: 193.x.x.x.[500]-174.112.x.x[500] message id:0x8

...

MP18 by Cyber Elite
  • 4296 Views
  • 9 replies
  • 0 Likes

Resolved! Tunnel went down while PA was responder

Seems PA was responder and tunnel went down today at 9.29.22  MST

below are logs

 

 

We were responder so we should know the reason for tunnel going down

 

72%2019-05-10 09:28:16.772 -0600 [PNTF]: { 14: }: notification message 36136:R-U-THERE, doi=1 proto_

...

MP18 by Cyber Elite
  • 5185 Views
  • 7 replies
  • 0 Likes
  • 23579 Posts
  • 103 Subscriptions
Top Liked Authors
Labels