General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 407 Views
  • 0 replies
  • 2 Likes

Resolved! log forwarding to m500 and SIEM

 

we have panorama in active and passive and all firewalls are connected to it.

We have m500 log collector and when i run below command 

 

sh logging status 

 

i see the firewall is sending logs to m500

 

also we have configured logs to be send to SIEM.

 

1>Ne

...

MP18 by Cyber Elite
  • 5361 Views
  • 8 replies
  • 0 Likes

Resolved! GlobalProtect restrict to approved devices

Hello,

 

I am trying to restrict what devices users can log in to GlobalProtect with to only machines that we have given them.  Since all of those machines would be domain-joined, I would expect that I can import an AD group that contains those machine

...

PA SSL-decrypt pcaps

Hi,

 

I would like to know by security / audit issues if the captures that are made automatically when detecting a threat on encrypted traffic are stored encrypted or decrypted. So, PA is storing pcaps when enable ssl-decrypt about this traffic?

BigPalo by L4 Transporter
  • 1789 Views
  • 2 replies
  • 0 Likes

Resolved! Vulnerability Protection Signatures

Is there a PA best practice regarding how to handle Vulnerability Protection signatures with severity ratings of high in custom profiles? Should rule actions be Drop, Reset-Both etc

Resolved! LSVPN Loopback

Hi Folks,

 

I'm currently trying to setup LSVPN between our various sites (with the help of the PaloAlto guide and YouTube video!) but was wondering if we could use a Loopback interface instead of a physical Layer 3 Interface? We currently use this wit

...

Damiel by L0 Member
  • 3103 Views
  • 2 replies
  • 0 Likes

Resolved! service versus using an application for Rule match

 

Need to know if we use application instead of service in security policy 

 

When we use service then that will enable the firewall to take immediate action with the first observed packet based on port number.

 

When  we  use "application" in Rule that w

...

MP18 by Cyber Elite
  • 3627 Views
  • 5 replies
  • 0 Likes

Hardware upgrade process?

Greetings all,

 

My organization is looking to upgrade from an Active/Active 5060 deployment to an Active/Standby 5200 series deployment.  I have Expedition installed although I'm not perficient at it yet (side note: If anyone knows of and can pass alo

...

jsalmans by L4 Transporter
  • 2727 Views
  • 3 replies
  • 0 Likes

PA3220 HA Trigger Condition

I have a pair of PA3220 firewalls in my environment. I configured Active/Passive for High Availability and I configured Link Monitoring condition to trigger the failover. However I'm still not clearly understand the behavior of PA HA. 

 

I configured a

...

HA.png
Putmano by L0 Member
  • 2229 Views
  • 3 replies
  • 0 Likes

LAB PA-200 fails 7.0.1 upgrade

I have a Lab PA-200 that I have been upgrading to the latest version of PAN OS for testing.

I have been uploading the OS file and upgrading for a while.

The 7.0 file worked fine. After the alert about 7.0. I attempted to upgrade to 7.0.1.

No joy. In Fir

...

markwoll by L1 Bithead
  • 10857 Views
  • 21 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels