General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 416 Views
  • 0 replies
  • 2 Likes

URL filtering issue

Good day,

I have such kind of issue after PAN update to 9 version.

Here are 5 allow categories, pre-defined categories (low-risk, medium-risk, high-risk and newly-registered-domains), which I want to make alert. But after change, all of categories beca

...

Screenshot_1.jpg

SSL version logging

Is it possible to log the version of ssl/tls being used for decrypted sessions (inbound ssl inspection in particular)? I know we can control what versions are used in the decryption profile but is there any way to identify the specific ssl versions b

...

mpochan by L0 Member
  • 3131 Views
  • 1 replies
  • 0 Likes

EDL HTTP response code said error

Hello Community,

I have posted this question before, and was told that it is a server error, I have replaced the server but with the same error, so I thought I would post it again, could it be somthing wrong with the server configuration, or could it

...

Need suggestion for 2 x internet data line network design

The office has 2 internet data line. Each of them has a fix public IP address. Device is a PA-820.

I want to separate the utilization of the data line as below.

 

1. Office area/staff primary use 1st data line. If this line down then auto change to use

...

jeremylo by L3 Networker
  • 3534 Views
  • 5 replies
  • 0 Likes

Resolved! Suspended HA partner becomes active

We are in the process of setting up HA between two PA-5050 running PANOS 6.1.14. After configuring everything and testing failover in our main data center we performed "Suspend local device" on the passive node and shut it down to move it to our seco

...

Resolved! Why Destination NAT has no option for Bi Directional?

Need to understand when we do destination nat why there is no option for bidirectional ?

 

For destination nat the return traffic comes without bi directional option not available due to the PA being stateful and matching

the session?

MP18 by Cyber Elite
  • 2531 Views
  • 2 replies
  • 0 Likes

Resolved! O365 sub-applications

Currently, our palo alto only detects the following O365 applications

*ms-office365

*outlook-web-online

*sharepoint-online

*ms-office365-base

*ms-teams

*ms-lync-online

 

Do we need to enable SSL decryption so that it can detect other sub-applications? (ms-do

...

blocking yahoo.com advertisements

So yahoo.com has some new, annoying advertisements that are behind/beside the web content.  Our PA-3060 with PanOS 8.1.4 is not blocking these AD's.   Anyone have advice on getting these blocked?

 

 

yahoo ad

yahoo ad.jpg
Jwaayers by L0 Member
  • 2394 Views
  • 1 replies
  • 0 Likes

Resolved! Update Path for User ID Agent

I need to update our User ID Agent from 7.0.0-23  to 8.1.7-5 or 9.0.1-5.  Do I need to follow an upgrade path or can I just go directly to the version needed for the User ID Agent?  Thanks in advance.  

Resolved! SSL inspection with Java applications

I have found that Java appears to use it's own certificate store which is causing me grief.  Work around is to install our root CA within the Java control panel but this is not efficient for a large organization.  Has anyone found a way to push root

...

DIRTT by L2 Linker
  • 5457 Views
  • 3 replies
  • 0 Likes

extending vlan

Hi,

 

I have two pa device , if . Both are in two differnet site . and I want to access the device in vlan10  from one site to another . 

How can i do that .

 

 

vlan 10 ----fw1 --------------fw2---vlan 10 

Thanks

 

simsim by L4 Transporter
  • 7951 Views
  • 13 replies
  • 0 Likes

Static route path monitoring

Hi All,

 

We have PA-820 models with Active-Passive configuration. 

 

I have configured the static route path monitoring based on this guideline - https://docs.paloaltonetworks.com/pan-os/8-0/pan-os-admin/networking/static-routes/static-route-removal-bas

...

ChiragP by L2 Linker
  • 5147 Views
  • 2 replies
  • 0 Likes

Problem with SIP traffic

Hello there!

 

I have a problem with SIP traffic for VoIP. It is a HA cluster that has experienced that problem with the SIP traffic for phone calls. For a number of hours, SIP calls could not be made or received. Mismatches with the config between act

...

URL Filtering Clarification

I have been wrestling with many people regarding URL filtering specified within the "Service/URL Category" tab of a security rule.  First off I don't have a URL license.  Let me continue... I have created a security rule that allows traffic to a URL

...

ScottF by L1 Bithead
  • 2711 Views
  • 1 replies
  • 0 Likes

Faulty Device - Config Wipeout

Hi Experts,

 

We want to remove the configuration from the failure firewall before shipping faulty device back to PA. Since firewall isn’t booting  up, we’d not be able to do “Factory Reset” to wipe out old config.

 

We need to delete old configs. Can so

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels