General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 279 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3159 Views
  • 2 replies
  • 14 Likes

GlobalProtect Configuration Opinions

Greetings!

 

Just to be upfront, I have my configuration working for the most part but I'm interested to hear if there's not a better/safer/quicker way of bending GlobalProtect to my needs. Please feel free to chime in with ideas, opinions or suggestio

...

mbahen by L2 Linker
  • 2028 Views
  • 2 replies
  • 0 Likes

Dynamic update from Panorama failed

Hello eveyone,

 

I tried to let PA-3250 do the dynamic update (scheduled updates) from Panorama but failed.

 

Signatures is success push to PA-3250 but failed to update.

 

Here are logs  from PA-3250 and Panorama.

Thanks!

pnrm update log error-2.png
pa update log error.png

Resolved! How to add domain security group superuser access

Hello,

 

I would like to add a domain security group superuser access to Panorama and devices.  So any users in the below groups access to both panorama and firewall’s.  

 

Superusers - CN=PA Superusers,OU=Global Groups,OU=Ad Australia,DC=ad,DC=com,DC=au

...

Resolved! Panorama 8.0 - EDL & Certificate Profile

Hi all, 

 

I just ran into an issue while creating an External Dynamic List in Panorama 8.0. The source is a HTTPS address that requries a certificate profile for validation, so far so good. The problem is that I can't select any certificate profile, t

...

Capture.JPG
Capture.JPG

Resolved! GlobalProtect for Linux cannot connect to local gpd service

After installing the rpm (latest version as of today: 4.1.7, running on Fedora 28) the cli client cannot communicate with the service (although it is started):


$ systemctl status gpd
● gpd.service - GlobalProtect VPN client daemon
Loaded: loaded (/usr/

...

ctr_ts by L1 Bithead
  • 22596 Views
  • 5 replies
  • 0 Likes

Specific channel allow Youtube - Not working

Hi,

 

had a requirement of allowing specific channel in youtube. Follwed this document 

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-MineMeld-to-filter-YouTube-videos-to-only-approved/ta-p/164928 

and everything was working as expected .

...

tac.in by L3 Networker
  • 1562 Views
  • 0 replies
  • 0 Likes

Resolved! DMZ Config for web server

My firewall is using the following Interfaces/Zones: E1/1(5.5.5.170/29) and E1/1.1(5.5.5.174/29) are in the outside zone.  E1/2(192.168.254.252/24) is in the inside zone.  E1/8(192.168.1.1) is in DMZ zone.  E1/1 and E1/2 are connected to the mainvr v

...

nmckee by L1 Bithead
  • 9853 Views
  • 4 replies
  • 0 Likes

Security Policy not blocking Facebook

Hello,

 

I am connecting to  the VDI as the teststud user and can browse to Facebook.  The session is hosted on IPC-VDI-VSH1 as per the screenshot below. 

I have copied our existing security policy which blocks access to Facebook, Youtube etc.  I can se
...

Deny traffic.jpg
Security Policy.jpg
  • 24090 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels