General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Any way to export pan_packet_diag.log?

Hi, When generating a flow basic log - is there any way to export just the pan_packet_diag.log using scp? According to https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClpFCAS the file wiil be included when exporting a TSF, but it would be useful to be able to export the single file...

Resolved! Using regex in defining a group address object

I'm defining a new group address object which should include addresses of several different tags (e.g. "Tag_1", "Tag_2", etc.).When trying to define the match field I cannot find a way to actually do that. I'm not sure it's even supported. Whatever pattern I use, no address object is assigned to the group.I've tried patterns in the following sty...

Resolved! Commit process

From Panorama during commit process , just typing "commit" and press enter will do commit to all device group/template ?

deepak12 by L3 Networker
  • 4694 Views
  • 2 replies
  • 0 Likes

Palo Alto Vulnerability Points (Urgent Action Required)

Hi Team, Can anyone provide your valuable suggestion here please.Below are the VAPT points shared by customer and solution provided : PA Vulnerability points (For reference please find attached pdf) :1) ssl/tls protocol initialization vector implementation information disclosure vulnerability (BEAST) - SSL/tls profile needs to be configure for f...

Resolved! How to Block browser extensions

Hello, Does anybody know if it is possible to block specific browser extensions from being downloaded?I would like to block the searchencrypt browser extension. Thanks

Any way to get this scenario configured?

I have GP Gateway license on my PA-5020 firewalls. I would like to allow 200 corporate owned samsung phones to access the VPN and block all other mobile phones. what are all the options I have to selectively allow them other than having a certificate authentication(because I have external clients connecting to same portal/gateway on laptops)? th...

Explicit and Implicit Allowed / Denied Apps?

I am trying to understand the relationship between apps and how rules for specific apps affect the access of other apps. I was reading this article: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClirCAC In there, it uses the example of "facebook" which has dependent apps like "facebook-base". If I was looking through...

777GE09 by L0 Member
  • 6851 Views
  • 2 replies
  • 0 Likes

Logging to Panorama VM

To cut a long story short..... we lost Panorama VM. (ESX)i removed firewall (3020) from Panorama management and selected "disable Panorama Policy and Objets" in Device\Setup\Panorama settings.imported policy and objects before disabling. built new VM 8.10 and upgraded 3020 to 8.17.Added new Panorama and selected "Enable policy "etc... Imported 3...

panlog1.png
panissue2.png
Mick_Ball by L7 Applicator
  • 3379 Views
  • 2 replies
  • 0 Likes

single vsys to multi vsys setup

Hi So i have a cluster setup as a single vsysI want to introduce a vendor GP setup - i have some vendor that want remote access to equipement and I want to allow them that access but limited to just that. I want to get around the accidental giving them more acces than they need. so I though tsecond vsys. I presume I can then just set policies...

(EDU-110) Player is not playing certain videos -Firewall 9.0 Essentials: Configuration & Management

The Open Curriculum player fo Firewall 9.0 Essentials: Configuration and Management (EDU-110) Player is not playing certain videos. I have reached Intial Config > Initial Sytems Access > Configuring Service Routes and the video will not play. I can still play videos from previous sections and certain videos from future sections (i havent...

Dual IPsec Tunnel to same destination with ECMP

Hi everyone,I would like to set up two ipsec tunnels to the same destination. I know I could do this by assigning the tunnel interfaces different metrics in the VR. But if I do that, only one tunnel will forward traffic at a given time. In our setup traffic needs to actively flow over any tunnel that is up: Can this be achieved with ECM...

topology.PNG
  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels