General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 193 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 875 Views
  • 0 replies
  • 0 Likes

Do you need Windows Server 2019 support for User-ID?

If you think you will need Windows Server 2019 support for User-ID, ask your PA rep to vote for feature request ID# 11012!

 

We just upgraded all of our domain controllers organization-wide to Server 2019 only to find out that User-ID does not work wit

...

GabeC by L1 Bithead
  • 9451 Views
  • 10 replies
  • 1 Likes

Import LDAP Groups

All,

 

I am trying to import my LDAP groups, but don't want all of them.  I have too many groups to put them in the Include list.  I also have a large number of local.admin and Folder Access security groups.  SInce I can't filter by OU, how can I filte

...

Zone protection - Show hops between source & dst.

Hello,

 

I want to see the hops between the source and destination when I do tracert from my PC to an IP.

The tracert is shown as completed.

 

 

 

I followed the following kb but didn't work: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA

...

2019-05-16 16_31_47-C__Windows_system32_cmd.exe.png
upatino by L1 Bithead
  • 2669 Views
  • 1 replies
  • 0 Likes

Traffic is not getting Natted DIPP

We have Single Outbound PAT configured for internet traffic for all internal users.

So all users traffic use the same Outbound PAt while going to internet but one traffic is not getting natted with this NAT policy

 

There is no PBF configured, its simpl

...

Automatic email alerts: Sinkhole and security policies

Hi Community,

 

This query is for PAN-OS v8.1.X

 

I am trying to generate an email alert when the firewall sees an (action eq sinkhole) event or when the security policy created to sinkhole an infected host is used. Email Profile(s) have already configur

...

ash83 by L2 Linker
  • 3932 Views
  • 1 replies
  • 0 Likes

Custom URL category enforcement in URL column

 

I'm seeing some different behavior from our firewall on 8.0 code.  I've got a few rules setup wtih both security URL profiles, and the URL category column.  I've got a few custom URL categories made that match certain traffic.  What I'm finding is t

...

Sec101 by L4 Transporter
  • 3864 Views
  • 5 replies
  • 0 Likes

Resolved! Server Monitoring Not Connected

Hello,

 

Microsoft AD under Server Monitoring is showing as 'not connected.'

We would like to use the PAN-OS Integrated User-ID Agent

Output from debug commands show UserID Debug Log is enabled but nothing is logging.

 

Anyone encountered similar issue?

 

Cisco ISE and Palo Alto TACACS

Few questions here. 

 

Why do you need user local on the PA devices?

Why do you need those users local on the ISE box rather then allowing access from AD groups via ISE?

If the users are local then password changes are not possible when a user changes th

...

Resolved! URL Filtering & Blocked Countries Response page

I have custom URL filtering response page enabled which works; however, I have noticed that when users get this response page, the URL category is correct and is allowed. When further investigating the issue, we found that the URL/Site is blocked by

...

MikeHamm by L1 Bithead
  • 2633 Views
  • 1 replies
  • 0 Likes

Panorama Device Removal

I had to rebuild Panorama 7 on ESX as for some reason after a power outage the image could not be restored...

 

New installation completed and licensed but I cannot get the firewall 3020 to connect.

 

I have removed the Panorama settings from firewall an

...

Mick_Ball by L7 Applicator
  • 3588 Views
  • 4 replies
  • 0 Likes
  • 24009 Posts
  • 115 Subscriptions
Top Solution Authors
Top Liked Posts
Top Liked Authors
Labels