General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! /opt/panrepo

Hello,

someone know for What is used this partition? /opt/panrepo

Reassign PA-VM EVal license to new vm firewall after rebuilding the VM

How can reassign the VM Evaluation authorisation to new PA-VM after rebuilding the VM firewall?

Kind regards Zoumana

PVLAN with Palo Alto?

I'm looking at doing some re-design for our DC networks and wanted to investigate some further segmentation. Since we aren't really large enough for NSX or ACI I wanted to look at PVLAN.

I've got some Nexus9K switches with Layer 3 licensing in HA an

...

Resolved! IKE v2 ASA vs. PA

Hi together,

at the beginning of this week I ran into the following challenge.

I’ve to setup an IKE v2 Tunnel between a Cisco ASA and a PA-850 running on 8.0.12.

During the configuration the Cisco Partner send me the local and remote tunnel pre-shared

...

Resolved! PAN-OS 8.1 User-ID problems

Hi there,

I have some problems with a user-id installation on PAN-OS 8.1.4, scenario:

1) Windows AD Domain Forest, with around 6/7 domains

2) I'm only interested in authenticating users from one of the domains in the forest

3) I've correctly connected th

...

Is the PA-220 compatible with newer firmware versions. Like 8.0 and 8.1

So we have several PA-200 in production and need to upgrade to 8.0. I was talking to a Palo Alto technician and he was telling me that the PA-200 are too old and not enough resources to handle the newer firmware and to upgrade. Do the PA-220 have eno

...

Strangeness with EDL - for Office 365

Hi

I have minemeld mining O365 address for my PA's. Moved to the new API as well.

I have a hybrid Exchange setup.

I have moved some mailboxes up to the cloud

What I have found recently is mail stops flowing

I have a rule that basically say

MS Public

...

Resolved! DNS proxy not accepting tcp connections

Hi

so my setup 5220

vlan 20 ... my named dns server 10.43.20.100 and 10.43.20.102 ... dns1 and dns2

on the pa on interface with vlan 20 10.43.20.1 I have configured dns proxy.

works well for dns via udp

but tcp doesn't work

so

tcpdump -pni eth0 host 10.

...

Passive Panorma - Shows Commit failed for few managed devices

We have M100 in active and Passive mode.

On Active Panorma under managed devices I see commit succeded for all firewalls

when i log into passive panorama it shows commit failed for few firewalls - template and shared policy?

How can i fix the commit

...

Resolved! Email Profile - Choosing Location as Shared or Vsys

I had configured the Template say Corp

Under email profile I have selected the Location as vsys shared is not checked in.

When i go to log settings then system then under email I do not see email profile which i created

If i change the email pr

...

Resolved! DNS Proxy with vwire

Question is it possible to create and use a dns proxy when in vwire mode. I would think that a vlan with an ip would need to be created in Interfaces- Vlan to facilitate this. Thought I would query to see if anyone had tried this. One issue that come

...

Each Panorama has separate connection to Internet for dynamic updates and they do not get syn.

when on passive PA i click on download for app and threat version it gi

...

Security Policy Granular to Address Group?

I have a group of computers that I want to apply a different security policy with a different Security Profile to.

I have created 2 Security policies.

The first policy = Internet Out allow any - Trusted Zone to Untrusted Zone with the default 'basic

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free