General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 320 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3676 Views
  • 2 replies
  • 14 Likes

Clientless VPN (Web) and SSO credentials

Dear Palo Alto Experts,

 

We have set-up a Clientless VPN webpage for certain users so that they can connect to an internal website from outside the company. 

 

When they logon to the VPN portal, with their Windows Credentials (Radius authenticaton), the

...

GlobalProtect_Chrome.png
GlobalProtect_Edge.png

Using custom URL categories

Hi guys,

 

We're trying to stop users from accessing webpages featuring 'momo' content.

 

We've set up the below custom URL category and it only blocks Google searches for momo while in incognito mode, and still allows Google image and Youtube results. 

...

URL category.png

Block websites when using VPN

Some users started to use SoftEther VPN client on our company which allows them to bypass URL Filtering policy. How can we allow them to use VPN client but still allow or block access to certain websites. We already implemented SSL decryption rule bu

...

nredaj by L1 Bithead
  • 6663 Views
  • 8 replies
  • 0 Likes

Palo Alto and Panorama integration/availibility question

Hi all,

 

I have some questions about integration between PA firewall and Panorama.

In my scenario, there's one cluster of PA devices and only one Panorama device.

The firewall policies were imported from the cluster into Panorama (Pre-Rules in the Devic

...

licenselu by L4 Transporter
  • 3567 Views
  • 4 replies
  • 0 Likes

pre-stage changes in Panorama

Is there a good way to pre-stage changes using Panorama? Sometimes I have needs to make a rather complex set of changes in various areas, but I don't want to commit them to the firewall for days or even weeks. Is there a good way to handle this? I kn

...

Fail Over using Path Monitoring & NAT configuration

I have a firewall wth 2 broadband circuits connected to it, one primary & one secondary.  My goal is to PAT all outbound traffic usinging the primary interface's public address but in a fail over situation I want to PAT all outbound traffic using the

...

Mine Palo Alto firewall (custom) reports?

Is anyone mining (own) firewalls reports?

I hate to reinvent wheel, so would appreciate any suggestions.

 

Use case: Teamviewer

They are not publishing their IPs ( https://community.teamviewer.com/t5/Knowledge-Base/Which-ports-are-used-by-TeamViewer/

...

Resolved! Static route path monitoring recovery

I've configured static route path monitoring on primary ISP.  When it if fails secondary ISP comes up.  Do I need to configure static route path monitoring on secondary ISP for primary to come back when the circuit recovers? 

 

Thank you

treese by L3 Networker
  • 4895 Views
  • 4 replies
  • 0 Likes

Traffic vs Threat Logs

I am searching for the reasons behind the relatively large disparity between traffic logs and threat logs for specified traffic searches in splunk. Redirected sessions cant be a contributed factor when the firewall is set to "log container page only"

Captive Portal

Dear Friends !

 

Good Morning,

there is 2 questions regarding Palo alto

 

1. how to reset user session by GUI when he is login to PAN vial Captive Portal for internet Access ?

2. how to ping, traceroute and other testings via PAN GUI Mode ?

  • 24192 Posts
  • 100 Subscriptions
Top Liked Authors
Labels