General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 338 Views
  • 0 replies
  • 2 Likes

Is it secure ?

Hello all

We have configured GP REMOTE ACCESS VPN with OTP  authentication.

Ones we try to connect to Portal it failed to pass at the first time only second time.In Radius server we see that it tries to authenticate first the Ldap account then VPN acco

...

196a29e9-25ea-4d60-8419-89dec249898b.jpg
64670083-273b-46e3-a99e-f1db5b8ccf9d.jpg
Radmin_85 by L4 Transporter
  • 2490 Views
  • 3 replies
  • 0 Likes

Resolved! ha syn failure - url filtering

 

on passive PA we are seeing 

 

( description contains 'No synching file to peer because local state is not Active (Passive).' )

 

is this normal?

MP18 by Cyber Elite
  • 2072 Views
  • 2 replies
  • 0 Likes

Cannot Sync Running Config in HA active/passive

Hi All,

 

I have a PA3020 with 7.0.5-h2 PAN-os version.

I have tried different times to sync manually the running config on passive member without success.

 

I can clearly see from the Active Member's "ha_agent.log" these errors:

=========================

(

...

Resolved! MineMeld and Office 365

I've used MineMeld in the past and I've been very happy with all of it's functions.  Recently, I've started a new job and I've recommended MineMeld as a solution to get O365 IP's into the firewall for writing policy.  Microsoft announced on April 2nd

...

Resolved! Changing Firewall Rule Names (Security Policies)

I need to rename a whole bunch of firewall rules (Security Policies).

Ive done a search here and looked in the manual; I think I know the answer.

I can change Firewall / NAT rule names as needed? There will be nothing else I have to change right? This

...

choff123 by L3 Networker
  • 4297 Views
  • 3 replies
  • 0 Likes

Resolved! 8.1.4 & TLS 1.3?

This link (https://www.ietf.org/mail-archive/web/tls/current/msg27066.html) says that PAN-OS 8.1.4, PAN-OS 8.0.14, and PAN-OS 7.1.21 will fix a TLS issue.  I don't see any mention of this in the 8.1.4 addressed issues page though.  Do we know this is

...

Resolved! Dual ISP VPN failover with static route path monitor

Now that we have newer features like static route path-monitoring, is there a new recommended configuration for Dual ISP with VPN failover?  I'm thinking SiteA (Dual ISP) to SiteB (Dual ISP) with IPsec VPN both using a single VR. 

I assume it will be

...

Palo Alto Mgmt Port Issue

Dear Friends,

 

We are facing a issue that currently we are unable to console to firewall device. But traffic is passing through active firewall. Status is HA1 backup= Down

 

Please advice 

 

Thanks,

Lakshitha

Resolved! logs for Intelligence Sharing and telemetry

is there any way i can find from cli or from web gui that confirms my PA is sending all telemetry   data ?

 

any where in PA  cli i can find the logs or data send to Telemetry?

 

where it  send this data to?

 

is this function performed by the MP of the PA

...

MP18 by Cyber Elite
  • 1918 Views
  • 2 replies
  • 0 Likes

URL Filtering block websites?

I have a URL filter profile with a list of URLs set to block (under Objects  Security Profiles > URL Filtering), which is applied to security group profile. 

However none of the URLs are being blocked. 

Is there something I should check to confirm this

...

URL Filtering different with browser and application

Hi

 

We have a server, from where the user wants to go to, for example, abc.xyz.com.

The certificate from the website xyz.com has a CN *.xyz.com.

 

We dont have decryption for URL Filtering. In the URL Filtering category, we have allowed abc.xyz.com.

The u

...

FQDN as source address

Hi to all

 

I have a problems with riles with FQDN

 

For example i created rule:

 

source ip - destination ip - destination port

 

I changed ip to FQDN object - pc1.domain.com.  Palo Alto can resolve name to IP. 

 

New Rule:

 

source FGDN - destination ip - dest

...

aaobuhov by L2 Linker
  • 3179 Views
  • 4 replies
  • 0 Likes
  • 23671 Posts
  • 108 Subscriptions
Top Liked Authors
Labels