General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 281 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3163 Views
  • 2 replies
  • 14 Likes

Question to Signal, Skype and Google Hangouts video calls

Hey guys,

When I want to do a video call with Signal messenger, I need to add two rules:

 

Rule1:

App: Signal

Service: application default

 

Rule2:

App: STUN

Service: any

 

Signal accesses random destination ips on random ports.

 

Skype and Google Hangouts need t

...

MPI-AE by L4 Transporter
  • 2456 Views
  • 1 replies
  • 0 Likes

how to download the ca certificate for the anydesk

HI Team 

 

I getting an error while connecting to any desk error code: could not connect to any desk network SSL_14090086

I tried to add the SSL decryption list but still, the issue remains 

 

how to add the trust certificate for any desk and is there any

...

HemanthV by L2 Linker
  • 6744 Views
  • 1 replies
  • 0 Likes

Resolved! User not in Allow list

Hello,

 

We use SAML authentication profile. with PAN-OS 8.0.13 and GP 4.1.8.

 

Followed the document below but getting error: SAML SSO authentication failed for user. Reason: User is not in allowlist.

 

http://saml-doc.okta.com/SAML_Docs/How-to-Configure-

...

Resolved! userid in multiple VSYS environment

Hello,

 

We are using PA cluster in multiple VSYS environment. We would like to be able to configure user / group based policies across all the VSYS by sharing userid mapping table with all the VSYS (the user identification baseline is the same for all

...

Resolved! Troubleshooting Application Incomplete with two way TCP traffic

We are having issues with one application while migrating the network from ASA to PA

PA is Running 8.0.9 on 3020.

 

Application shows as incomplete with more than 4 packets.

We see trasmit and receive in the PA.

Nothing in threat logs.

 

As per TAC they say

...

MP18 by Cyber Elite
  • 22952 Views
  • 6 replies
  • 0 Likes

Resolved! Phase 1 is down but phase 2 is up- test vpn phase 1 and 2

we have tunnel from PA  to vendor which is using Cisco ASA.

When there is no interesting traffic tunnel is down by design this part is ok.

 

but today i saw phase 1 as red and phase 2 as green on gui.

I did the 

 

test vpn ike command and phase 1 was green

...

MP18 by Cyber Elite
  • 5367 Views
  • 2 replies
  • 0 Likes

PA-VM not recognizing SSL and denying traffic

Hello,

 

We are implementing SSL Decryption to PA.

 

Because of this forcepoint agent (that is installed on theworkstation), the return traffic from the Internet (ie: facebook.com, etc) will be denied by the firewall as the SSL certificate has been chang

...

Resolved! Error Message in PANGPA logs

Hello,

 

We are using 4.1.0-98.

 

The clients at fault work fine through a tethered mobile, however when connecting to their home WiFi the connection is successful but nothing will work through the VPN.

 

Below is a log snippet. What exactly is going on he

...

Critical System Alert

The firewall has flooded the system logs with the following message:

Traffic and logging are resumed since traffic-stop-on-logdb-full feature has been disabled.

 

Software Version- 8.0.3-h4

Model: PA-3020

 

Disk space looks fine:

 

Filesystem            Size

...

Incorrect User-ID

Hi all,

 

I'm having an odd issue.  I have global protect configured and using Okta (saml) authentication.  Now everything is working fine except that a handful of users have the wrong user-id.  All users are expected to have their email address as the

...

  • 24090 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels