This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 275 Views
  • 0 replies
  • 1 Likes

Resolved! DNS proxy not accepting tcp connections

Hi

 

so my setup 5220

vlan 20 ... my named dns server 10.43.20.100 and 10.43.20.102 ... dns1 and dns2

on the pa on interface with vlan 20 10.43.20.1 I have configured dns proxy.

 

works well for dns via udp

 

but tcp doesn't work

so 

tcpdump -pni eth0 host 10.

...

Passive Panorma - Shows Commit failed for few managed devices

 

We have M100 in active and Passive mode.

 

On Active Panorma under managed devices I see commit succeded for all firewalls

 

when i log into passive panorama it shows commit failed for few firewalls - template and shared policy?

 

How can i fix the commit

...

MP18 by Cyber Elite
  • 1310 Views
  • 1 replies
  • 0 Likes

Resolved! Email Profile - Choosing Location as Shared or Vsys

I had configured the  Template say Corp

 

Under email profile I have selected the  Location as vsys  shared is not checked in.

 

When i go to log settings  then system   then under email I do not see email profile which i created

 

If i change the email pr

...

MP18 by Cyber Elite
  • 2018 Views
  • 2 replies
  • 0 Likes

Resolved! DNS Proxy with vwire

Question is it possible to create and use a dns proxy when in vwire mode. I would think that a vlan with an ip would need to be created in Interfaces- Vlan to facilitate this. Thought I would query to see if anyone had tried this. One issue that come

...

icloud email receiving but not sending

I can see the traffic using smtp on port 587 but everything end tcp-fin. Tried turning off decryption to me.com. Traffic hit the rule that allows any traffic out for this particular user and they are also exempt already from decyrption. What should b

...

Security Policy Granular to Address Group?

I have a group of computers that I want to apply a different security policy with a different Security Profile to.

 

I have created 2 Security policies.

The first policy = Internet Out allow any -  Trusted Zone to Untrusted Zone with the default 'basic

...

catrock by L2 Linker
  • 2879 Views
  • 4 replies
  • 0 Likes

Resolved! Simple Explination of Share Levels

I have read all the documentation, and have a test environment for MineMeld, but I still cant work out what share levels are being used for.

I was of the beleif that it was green=good (i.e. whitelist these) and red=bad (i.e. block these) however this

...

Aggressive cleaning feature

Hi,

I have a doubt regarding the aggressive disk cleaning feature introduced starting in PANOS 8.0.7. Details below.

To enable aggressive cleaning:
> debug software disk-usage aggressive-cleaning enable

To check if enabled (if enabled, this command will

...

SSL_ERROR_NO_CYPHER_OVERLAP

All clients are intermittently seeing "SSL_ERROR_NO_CYPHER_OVERLAP" when browsing secure web pages. This began just about half an hour ago. Any Ideas?

PA VM Interface Issue

Dear All,

 

I setup test lab with vmware workstation. only ethernet1/1 interface is up. Others are down mode. I have attached screen also . Please advice me.

 

Thanks,

Lakshitha.

Resolved! expired dhcp leases PA-3020 8.0.7

Hi all,

there is a dhcp server for a network with a lease time of 14 days. When I open the allocation, there are a lot of expired dhcp leases.

Doesn't the firewall automatically delete them?

MPI-AE by L4 Transporter
  • 4794 Views
  • 6 replies
  • 0 Likes
  • 23639 Posts
  • 107 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks