General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

how to uninstall global protect when it keeps reinstalling even after i uninstall it (i have admin)

Hi there, Ive tried to uninstall gp from my computer, however, it keeps reinstalling. I have tried deleting all files related to gp (e.g appdata gp files and gp program files). ive also tried this method (link is below) but it doesnt work as it keeps reinstalling. Does anyone know how to uninstall it permanantly? https://knowledgebase.paloal...

Mulit-Vsys setup with Wildfire

Hi Friends, We are planning for a multi-vsys PA setup, where one vsys will have only L3/L4 policies and second vsys will be in L2 bridge mode with Threat prevention features only. Vsys1 will only scan L3/L3 policies while vsys2 will scan traffic for any threats. We believe this is logically possible solution, need some clarity on integrating W...

Site blocking under music category

Hi Team, One Visa processing URL blocking under Music category in my firewall. I ready added the this site into allowed list. But still blocking under music category. How to allow this URL make acces withough enable music category.

IPsec tunnels to multiple peers with overlapping remote networks

Say I have site-to-site IPsec tunnels from my Palo to 2 different peers. How do I handle the case when the 2 peers have the same or overlapping networks? Do I ask one of the peers if they can NAT their network to something that doesn't conflict with my other peer? What if neither peer is able to NAT?  

ipsec_overlapping_remote_networks.png

GP Always on VPN - Except if on internal LAN?

Is there a way to implement this? I have seen the internal host detection option but as far as I can see that is only to choose whether you connect to an internal or external gateway.I want all remote site users to go through the Palo Alto, but I can achieve that by routing alone. I dont see what I would be achieving by forcing vpn while on inte...

welly_59 by L3 Networker
  • 4422 Views
  • 3 replies
  • 0 Likes

GlobalProtect Always On Issue

I am currently testing GlobalProtect Always on, I have configured to operate at user logon. The issue I am having is that on start-up of my laptop, on my corporate network I am prevented from any network access. If I connect to my public WIFI and connect GlobalProtect and can access my network ok. Reverting back to my corporate network and it th...

rossm by L1 Bithead
  • 6394 Views
  • 8 replies
  • 0 Likes

how to add certificate global protect for ipad

Hi everyone,"I'm stuck at step 7 (7- Settings > Profile downloaded >"Im stuck in" Install > Enter phone Passcode > Install > Install > Install >Done),When I install the certificate, it shows a notification that it cannot be verified "not verified' When setting it up, there is an additional message: 'The authenticity of "myna...

HAINVH by L1 Bithead
  • 1957 Views
  • 4 replies
  • 0 Likes

License Usage AuthCode

Hi there We are trying to track license usage as shown here: https://docs.paloaltonetworks.com/vm-series/11-0/vm-series-deployment/license-the-vm-series-firewall/vm-series-models/licensing-api/use-the-licensing-api/track-license-usage For the call to work, auth code is required. Calling the "devices" endpoint does not include this particular...

Resolved! Site to Site VPN

Quick question on setting a site to site vpn, using tunnel mode. If I have a site "A" peer going and connecting with a site "B" peer for a VPN, can both sites have the same IP address subnet, or will that conflict? Scenario: Site A: 192.168.20.5/24 (Local LAN) Site B: 192.168.20.88/24 (Local LAN) Would a NAT be required within the Palo ...

GlobalProtect Android version 13 issue

Global Protect login continues to fail on Version 13 Android. It seems to have been caused by Android security enhancement issues. created it with SHA 384 but I can't log in. "The network connection is unreachable or the portal is unresponsive, Check the network connection and reconnect" There is no problem with global protect c...

qmso475_0-1701243435266.png
qmso475_1-1701243590189.png
qmso475_2-1701244110530.png
qmso475 by L3 Networker
  • 5611 Views
  • 11 replies
  • 0 Likes

EST Enrollment over Secure Transport

I use certificate based IPSec VPN Tunnels that rely on Certificates. The Certificate Authority i use supports EST to allow for automated enrollment similar to SCEP. Is there a way to configure Pan-OS to work with EST instead of SCEP? I have not been able to find any other forums to support this topic.

Resolved! Regarding Security Advisory CVE-2024-3393

Hello Team, I have recently upgraded my pa-1410 firewall to panos ver. 11.1.4-h7, because its preferred version so far. Today I have received this advisory link ... https://securityadvisories.paloaltonetworks.com/CVE-2024-3393 I have DNS Security enabled. Things are not clear to take an action, what id action required? I can see my version li...

Resolved! Failure to install Apps and Threats

Model PA-3050Software Version 9.1.16GlobalProtect Agent 6.1.0Application Version 8692-7955 (03/30/23)Threat Version 8692-7955 (03/30/23)Antivirus Version 4401-4918 (03/26/23)WildFire Version 757322-760771 (04/06/23)URL Filtering Version 20230406.20155 Issue: A few weeks ago, i started to notice that Apps and threats are failing to install. See...

Kali by L2 Linker
  • 6117 Views
  • 5 replies
  • 1 Likes
  • 24400 Posts
  • 123 Subscriptions
Top Solution Authors
Labels