General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 421 Views
  • 0 replies
  • 2 Likes

Hangout as ms-lync

Hello everyone,

 

the users in our company use Google Hangouts / Meet. We allowed google-hangouts and google-meet and all the dependent applications with Service Any.

However the connection is recognized as ms-lync!!

 

Anyone else facing similar issue?

 

Be

...

Configure Firewall HA through Panorama

Hi !

 

How we can configure the HA between Firewall through Panorama. I have added the both devices in to single device groups. So whenever i did the HA configuration parameters it's getting applied to both devices .

 

What are the steps need to be follo

...

gpsriram by L1 Bithead
  • 1951 Views
  • 2 replies
  • 0 Likes

Panorama snmp trap

My idea was first to setup panorama to monitor the logs for critical and then send snmp trap.

But from what i can see from the PA mibs, there are no way for panorama to send info in the trap about the device? So all i see in the trap is the panorama i

...

hbalzac by L3 Networker
  • 3236 Views
  • 2 replies
  • 0 Likes

Resolved! Authentication via LDAP server

We have a PA-3050, I have setup LDAP auth and it is working fine, however I have a question/concern.  Yesterday we had a user offsite who needed VPN access, he was not in the AD group initially, so I added him to the AD group and sent him instruction

...

GlobalProtect concurrent Gateway conections

Hi

 

i have two separate PA-220 clusters  in separate sites and i can connect to each one independtelly via global protect, but i have to choose one site or the other. is there a way to setup the Global protect to connect to both sites at the same time

...

Resolved! A new PA-3250 required licenses

Hi,

 

I'm planning to deploy PA-3250 for a company. I've recommended the following modules for them as per their requirements:

PAN-PA-3250-URL4-5YR.

PAN-PA-3250-TP-5YR.

PAN-PA-3250-WF-5YR.

 

Now, i'm not sure if we must also include the premuim support lice

...

GlobalProtect Connection Issue

The company I work for recently roled out paloalto vpn service for users to connect via VPN

However one frustration most if not all users have observed is the initial connection via GlobalProtect client.

 

Across all client versions and all OS's (Window

...

version.png
1.png
2.png
carterg by L2 Linker
  • 9011 Views
  • 5 replies
  • 0 Likes

SSL Inbound Decryption with ADFS

I am seeing issues with inbound decryption and ADFS.  Through investigation, I found that the EC Curve 25519 is not supported, but is the default for Windows 10 and Server 2016.  Per tech support, this will be available in the latter half of 2019 as

...

Resolved! Does BGP need to be on a separate virtual router ?

I'm currently using rip in a single virtual router. I'm adding BGP for a Microsoft Express Route circuit. I have a consultant to assist in the BGP setup. He says the BGP needs to be in a separate virtual router. Is there a reason for this that anyone

...

gefuchs by L1 Bithead
  • 7049 Views
  • 8 replies
  • 0 Likes

Resolved! Processor not pulling from Miner

Hello Folks,

 

I recently created a new miner to pull domains from a threat intel provider. I can see the Miner is pulling the expected amount of domains. However, my associated processor is not pulling anything from the miner.

I've already looked th

...

Untitled.png

User-ID picks up admin users ID not their proper login.

I have noticed that some of our users who have normal and privileged accounts are showing their "Privileged account" under User-ID.

 

Querying in windows shows the correct user...

 

show user ip-user-mapping ip


IP address:    1xx.1xx.1.187 (vsys1)
User:   

...

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels