General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

 

In the past six

...

survey-livecommunity.png
jforsythe by Community Team Member
  • 14543 Views
  • 1 replies
  • 4 Likes

VPN dissconnect part II

So other than the time out settings for the GP client.  Is there limit set somewhere that tells it to disconnect a client for dropped, insufficient or any other packet settings

jdprovine by L4 Transporter
  • 1675 Views
  • 18 replies
  • 0 Likes

Global Protect not using new DNS servers

Greetings!

We recently migrated to a new DNS server in our internal network; With this, we also updated the configurations on the firewall configuration, and on the GP setup to reflect this. We have the PAN giving IP's to GP clients directly (not rela

...

TAXII or STIX generic miners?

Is it possible to have TAXII or STIX generic miners for internal custom feeds? We are exploring the data sharing between different vendors for our internal environment and instead of waiting for the vendor to come up with the integration, rely on ext

...

Resolved! Connection aborted error when 'running' miner job

I'm seeing error indicators for 3/4Miner nodes.  The error is ('Connection aborted.', gaierror(-2, 'Name or service not known'))

 

I would suspect this is not desireable and would like some direction how to fix that?  This is a new installation which

...

Miner.PNG

GlobalProtect Data File will not install

Greetings,

 

I upgraded to PAN-OS 8.1 / GP 4.1 in order to take advantage of the new interface.  This is a new deployment and I didn't want to roll out the old interface to the users.

 

Everything went smoothly except for HIP/OPSWAT v4.  I followed the i

...

Resolved! Query on multi Gateway in GP

Hello,

 

We are running PAN-OS 8.0.7 and require a second external gateway to connect a POS server (which can run the GlobalProtect client fine). The configuration has been done and the client successfully authenticates but for some reason the Agent co

...

Farzana by L4 Transporter
  • 1360 Views
  • 3 replies
  • 0 Likes

GlobalProtect SSO with SAML

Hello,

 

I have a customer who is having a unique issue with Global Protect using SAML.  The problem is not directly related to SAML but he states that prior to changing from RADIUS to SAML the issue did not exist.  The issue is with SSO. The customer

...

tsanger by L3 Networker
  • 978 Views
  • 0 replies
  • 0 Likes

File Blocking doesn't work with Layer2 Mode

Hello

I want to make a POC with one of our clients but we have a problem.

I configured PaloAlto on Layer2 mode, with Two Layer2 Interfaces, using this guide: https://live.paloaltonetworks.com/t5/Featured-Articles/Getting-Started-Layer-2-Interfaces/ta-p

...

Issues with custom log format in Panomara 8.0

Hello Community,

I have a doubt about syslog server profile in 8.0.

This is the scenario.

One panorama cluster running like a panorama and collector. All firewalls send your logs to panorama and panorama send to our syslog server.

When the syslog profile

...

Apadilla by L3 Networker
  • 603 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect with MFA/Dual Authentication

I've been looking up and down and can't seem to find a solution. I'm trying to authenticate to the GlobalProtect gateway or portal via Radius (which is tied back to AD) then to DUO for MFA. 


The user should point to the portal/gateway, receive a usern

...

How to Block specific HTTPS Sites?

Hello,

 

I'm struggling to block some internal https sites.

 

I have to block various sites/urls of a server from a specific zone, while I have to keep some others open 

The urls look like:

https://servername.suff.dom:8443/aaa/bbb/ccc/ddd/eeeee_ff_applicat

...

PhLang by L1 Bithead
  • 1118 Views
  • 5 replies
  • 0 Likes
Top Liked Authors