General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 419 Views
  • 0 replies
  • 2 Likes

GlobalProtect - Understand Client side Logs

Hi Guys,

 

We are doing a global protect deployment and I'm new to this area. Time to time we have some users with poor performance or freequent disconnects from global protect who send us log fles.

I have tried to search documentation that could provid

...

Namalw by L1 Bithead
  • 2086 Views
  • 1 replies
  • 0 Likes

Url filtring

Hello all,

 

Actualy we have 2 PA 3020 firewall in our company, we have some issue with the option URL filtring.

 

we have a policy block all user to acces to the web page with category (ex: games ...) 

 

in the monitor, I find the users who are bloked but

...

Session browser vs. traffic logs

Hi all,

Maybe someone can help to bring some light on my question. I'm trying to determine the difference between the session browser and the traffic logs. Why it is that when I search on a rule in the traffic logs I see specific traffic that is not i

...

Resolved! PA-3020 vs PA-850

Hi,

I am in the process to purchase a new pair of firewalls (in active/passive setup), but I am stuck in selecting PA-3020 or PA-850.

While the tech specifications are similar, the cost is not.

Additionally, the PA-3020 is around since a while, so I am

...

AMoretti by L1 Bithead
  • 7545 Views
  • 4 replies
  • 0 Likes

Resolved! ssl decryption enabled and proxy_wait_pkt_drop

 

ssl decryption is enabled on PA.

sh running resource monitor is also normal.

 

when i run below command i see

 

show counter global filter delta yes category proxy

Global counters:
Elapsed time since last sampling: 124.323 seconds

name value rate severity c

...

MP18 by Cyber Elite
  • 2901 Views
  • 4 replies
  • 0 Likes

global protect client unable to connect windows xp

Hi Team 

can anyone help me with below issue

 

We are having an issue with Global protect VPN connections from the Windows XP operating system.
We can connect to the SSL VPN via the browser and download the Global protect client. But the issue is when yo

...

HemanthV by L2 Linker
  • 4755 Views
  • 3 replies
  • 0 Likes

Resolved! Bug: Multiple Portals work only on GlobalProtect 4.1.0

Good day all,

 

i was enthusiastic when 4.1.0 appeared, because this version finally allowed to manage connections to many PAN portals in a very easy way.

Sadly, in 4.1.1, 4.1.2, 4.1.3,4.1.4,4.1.5,4.1.6 this is no longer working! 

The dropdown menu is no

...

Resolved! recommended version of Panorama 8.1?

 

I have new PA that has come with 8.1 version.

Currently we have PA and PAnorama running on version 8.0.9.

 

Which is the recommended version of PAnorama in 8.1?

MP18 by Cyber Elite
  • 2716 Views
  • 3 replies
  • 0 Likes

moving firewall from one device group to another

I have one parent device group with  7 firewalls.

I have created 2 new device groups and i need to move 4 firewalls from the parent device group into these 2 new device groups.so  each new device group will have 2 firewalls each.

 

right now issue is th

...

MP18 by Cyber Elite
  • 4313 Views
  • 6 replies
  • 0 Likes

Resolved! does panorama gets local config from firewall

 

On one of education videos it says that in background panorma talks to firewall every 90 mins or so and pulls whole config

from palo alto(local config on palo alto and global config pushed via panorama?

 

Need to confirm if we have local config on palo

...

MP18 by Cyber Elite
  • 3329 Views
  • 6 replies
  • 0 Likes

Resolved! PA not installing antivirus automatically

On Active PAssive PA both devices are configured to download and install the antivirus every hour.

Today PAssive PA installed the software but on Active it only downloaded the antivirus update.

 

I need to manually install the antivirus on the active PA

...

MP18 by Cyber Elite
  • 3052 Views
  • 2 replies
  • 0 Likes

Resolved! Single packet threat pcap and disk space alert

 

I have enabled threat signature to capture single file only.

 

but from last 3 days i see so many same threat logs with pcap done.

 

i got email today of disk space alert

 

i checked disk space

 

show system disk-space

Filesystem Size Used Avail Use% Mounted

...

MP18 by Cyber Elite
  • 2131 Views
  • 1 replies
  • 0 Likes

Resolved! losing panorama config pushed to firewall

 

wondering if we have pushed all the config from panorama to pa.

PA has all the global  security polices.

 

what will happen  if we lose that panorama device like hardware failure?

 

or if we delete all the config from panorama and give it reboot?

MP18 by Cyber Elite
  • 2351 Views
  • 2 replies
  • 0 Likes

Resolved! ssl decryption and policy deny

 

I have configured ssl decryption and rule is there to allow the traffic 

IT is hitting the right rule but policy says denied?

 

 

what can be reason for this?

 

Capture.PNG
MP18 by Cyber Elite
  • 6399 Views
  • 5 replies
  • 0 Likes

Resolved! session offfload and flow basic

 

When we do session offload then PCAP can not capture the session offload traffic .

if i am also doing flow basic on that then flow basic will not be impacted by session offload?

 

Regards

Mike

MP18 by Cyber Elite
  • 3611 Views
  • 4 replies
  • 0 Likes
  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels