General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 422 Views
  • 0 replies
  • 2 Likes

Resolved! ip id in wireshark to confirm PA is not dropping the traffic

 

I am troubleshooting sharepoint connection to cloud on port 443

pcap and global counters show no drops

i see no discards in the cli.

 

when user access the website he sees blank page no contents

 

if i confirm the ip id in pcaps of the PA is same from rec

...

MP18 by Cyber Elite
  • 3459 Views
  • 6 replies
  • 0 Likes

Upgrading from 8.0.6 to 8.1.4 Issue

I am trying to upgrade from 8.0.6 to 8.1.4.

 

I can upload the image via the GUI and it states it saved. I use the cli to install the software package and it fails. I have downloaded 8.1.0 and 8.1.4. Do I need to upgrade to another iteration first?

 

Sid

...

Security Policy organization best practices?

We're working on an audit of our security policies to start getting rid of some generalized rules and start making things more specific.  I figured we could do some organization at the same time.  I'm curious how others are organizing their security

...

jsalmans by L4 Transporter
  • 3670 Views
  • 2 replies
  • 0 Likes

Resolved! Block Domain on NGFW

Hello,

 

can you anyone let me know how i block access based on domain name, e.g. i want a rule to allow all SMTP inbound except from domain testblock.com, how do i do this?

 

Thanks

 

Ryan

Resolved! Global Protect Portal Cached credentials

Under Global potect client logs i see in PAN GPA logs

 

cached credential for the portal

 

does it mean it i using username and pw for only the portal connection?

 

if i do not want portal to use cached credential what config change i need to do?

MP18 by Cyber Elite
  • 16061 Views
  • 3 replies
  • 0 Likes

Resolved! Policy not catching correct traffic

Hi all, first time poster so go easy!

 

We're running into an issue where a rule that is meant to catch ether-ip traffic on port 20033 is slipping through and being caught by a lower rule which allows any application and service. Rules as follows:

 

 

Whe

...

rules.png
rulebig.png
cli.png

HA1-B down on 3200 series

I've been doing some tinkering with a pair of 3220s and am noticing that in the GUI it's reporting HA1 Backup is down in the HA widget of the dashboard if I use the HA1-B port.  HA1-A is up, and if I use the management port for HA1-Backup, it comes u

...

dan731028 by L3 Networker
  • 10630 Views
  • 6 replies
  • 0 Likes

Resolved! Adding a sub-interface to an exsiting Security Zone

Hi,

 

I have a Palo Alto with existing security zones managed via Panorama. I need to add an existing sub-interface to an existing security zone which has been done on Panorama and committed. However, after logging into the firewall node directly the s

...

vvadia by L1 Bithead
  • 6228 Views
  • 6 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels