General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! Issue with URL Category

We have just setup SSL decryption and added custom response pages on our firewall.  We have a custom filter for shopping sites and the category is set to alert, if a user is a member of an AD group associated with this filter it works fine.  We decid

...

GlobalProtect Agent

Hi 

 

I want to know if there is a way not to allow old  GlobalProtect Agent to connect to the Palo Alto network firewall?

But allowing to update the client before logging on to the VPN?

 

Thank you

 

 

Cyon by L0 Member
  • 1874 Views
  • 1 replies
  • 0 Likes

GlobalProtect: Enforce GP-Connection = Windows Logon issues

Hi Community,

 

we want to use the "Enforce GlobalProtect Connection for Network Access" Option. 

 

Unfortunatly this causes some problemes when we use the client (Windows 10) in our internal network (with the internal host detection enabled). If the GP-

...

BHaaf by L0 Member
  • 1576 Views
  • 0 replies
  • 0 Likes

Rule Viewer

Hi folks,

 

I was wondering if there was some kind of rule viewer, that can render the rules in a table from the exported files.

 

Why I need this: Our managed service provider sends us an export of the firewall rules every month and we have to review th

...

JayArr by L0 Member
  • 2458 Views
  • 5 replies
  • 0 Likes

PaloAlto 3rd party captive portal integration

Hi! First of all sorry if this question is explained anywhere else; I've dedicated a few hours to browse docs and posts but I cannot find a proper answer. I work for a company that deploys hotspot solutions over premises using different hardware solu

...

Captive portal bypass

New to Palo Alto.

 

is there a simple way to disable/bypass the Captive Portal for a pc based on IP or IP range? Please be detailed since I rarely deal with the PA.

Resolved! no common encryption algorithms

When trying to access my PA-220 through my browsers I getting an error for no common encryption algorithms. I have attempted to enable all forms of TLS/SSL, I have tried Firefox, Chrome, Edge, and IE11 none of which work. Could someone please advise

...

ENOTFOUND api.nodesecurity.io api.nodesecurity.io:443

I am getting the below ERROR when installing on Ubuntu 16.04 using the instructions on the below SITE.  The URL's that are referenced api.nodesecurity.io do not resolve to an address which seems to be the issue, does anyone know how I can continue th

...

JDomNY by L1 Bithead
  • 4317 Views
  • 1 replies
  • 0 Likes

Resolved! Maintenance Page redirection via Palo Alto?

Hey folks,

 

We have an HQ site and Colo site.  We are moving our Colo site to a new datacenter.

 

We have two firewalls in HA.  I've already broken HA and taken the PA#2 over to new datacenter for early standup.  Leaving PA#1 at current site Active with

...

OMatlock by L4 Transporter
  • 3850 Views
  • 6 replies
  • 0 Likes

Resolved! NAT rule best practice for a mail server?

Hello folks,

 

We changed our public ips recently and we have a few recipeints that are blocking our new mail IP.  I am suspecting has something to do with either our TXT (SPF) record or the fact that we are using a destination NAT rule instead of bi-d

...

mail3.jpg
mail2.jpg
mail.jpg
OMatlock by L4 Transporter
  • 6871 Views
  • 7 replies
  • 0 Likes

Client IP Connectivity Issues

Hi All,

 

I have a PA-200 running Version 8.1.0 and providing DHCP addresses to about 175 clients.  The pool is a /24 and recently, the clients have been getting messages stating another device is using your computers IP address.  I've been tweaking th

...

Resolved! Panorama System Alert - failed exporting config bundle via ssh

 

we are getting system alert for Panorama M100 saying 

 

1 - SYSTEM ALERT : critical : Failed exporting config bundle via ssh to 10.71.16.210. No RSA host key is known for 10.71.16.210 ....Host key verification failed....lost connection

 

On Panorama sch

...

MP18 by Cyber Elite
  • 4600 Views
  • 5 replies
  • 0 Likes
  • 24202 Posts
  • 101 Subscriptions
This widget could not be displayed.
Top Solution Authors
Top Liked Authors
Labels