General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Panorama Logs FAQs

How to configure archive the logs on Panorama before to send the external syslog server,  Just want to give you an overview of Panorama topology.. Firewalls forwards all logs to Panorama and Panorama sends logs to the external server. 

But we are loo

...

Aerohive User-ID mapping

Trying to get the whole Aerohive/Kiwi/Palo syslog solution going. I cannot for the life of me get Kiwi to send the logs to the Palo. I have tried a few different scripting solutions with zero success. I am looking for the detailed setup process of th

...

DaveT by L0 Member
  • 923 Views
  • 0 replies
  • 0 Likes

Resolved! Captive Portal is not presented for wireless users

Hello All,

 

PA3020

PAN-OS 7.1.4-h2

 

Having a strange issue with Captive Portal on PA3020  where the captive portal just suddenly has stopped working. Did a management server restart, tested with the PC directly connected into the Guest-VLAN over the wir

...

CP1.PNG
CP2.PNG
CP3.PNG
CP4.PNG

Global protect portal redirect to https

Hi,

 

We have a Palo alto in which if you try to access to the global protect portal using http, its automactically redirected to https.

For example: if we access to http://vpn.xxx.com , the browser redirects to https://vpn.xxx.com. So thats perfect.

 

Bu

...

BigPalo by L4 Transporter
  • 2730 Views
  • 4 replies
  • 0 Likes

TLS version used by PA for SSL Communication

Hi all,

 

Can anybody please confirm if the latest PAN OS 8.0 still uses TLSv1.0 for handshake during SSL communication? Is there a way we can configure Palo-Alto to use TLSv1.1 or 1.2?

 

I have a HTTP server running services on 443 which supports minimu

...

Vishal7 by L0 Member
  • 742 Views
  • 0 replies
  • 0 Likes

External Dynamic List exceptions

Hello,

 

We have recently upgraded our FW to PanOS 8.x (currently running 8.0.8) and we want to use the newly added feature that enable to add exceptions in External Dynamic List.

 

However it doesn't seem to work since the configured IP we put in except

...

GlobalProtect internal gateways

I'm struggling with GlobalProtect and always on.I have it configuerd for Multi-gateways and that part works great.  My issue is when I switch WiFi networks to internal, the globalprotect still tries to connect. I have added internal host detection an

...

Amory by L1 Bithead
  • 2236 Views
  • 5 replies
  • 0 Likes

Running config not synchronized - Sync to peer

Hello ! 

 

We encounter a problem on a power supply on one of our Palo Alto. Since power supply replacement, we've the message "Running config not synchronized  - Sync to peer" but i've one question : Is the active firewall configuration will be pushed

...

Passive firewall initiating syslog connection

We've syslog configured on devices with tcp protocol on port 515. Our passive device syslog connection is breaking every 300 seconds. Can you help in understand why passive palo alto not sending keep-alive?

amey_13 by L1 Bithead
  • 2177 Views
  • 5 replies
  • 0 Likes

Sanity Check on a VPN Design

Greetings all,

 

I've been asked to set up a secure desktop for one of our departments.  The desktop will need access to a few on premises resources such as DHCP, DNS, and AD but, otherwise, it has to be restricted to allow connectivity only to a speci

...

jsalmans by L4 Transporter
  • 1030 Views
  • 5 replies
  • 0 Likes

User identification error with AD

Hello everybody!

I have a problem with user identification and accordingly with security Policy.

In different computer, the same user is seen "user" or "domain\user".

The rules for work must have both type of user format. This is a big limitation.

Where

...

Top Liked Authors