General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Resolved! Downgrade from 8.1.3 to 8.0.13

Hi 2 all

What is "best practice" to downgrade from 8.1.3 to 8.0.13 step by step?

For PA VM-300

Security Policy organization best practices?

We're working on an audit of our security policies to start getting rid of some generalized rules and start making things more specific. I figured we could do some organization at the same time. I'm curious how others are organizing their security

...

Resolved! Block Domain on NGFW

Hello,

can you anyone let me know how i block access based on domain name, e.g. i want a rule to allow all SMTP inbound except from domain testblock.com, how do i do this?

Thanks

Ryan

Resolved! Global Protect Portal Cached credentials

Under Global potect client logs i see in PAN GPA logs

cached credential for the portal

does it mean it i using username and pw for only the portal connection?

if i do not want portal to use cached credential what config change i need to do?

Source User is empty in Monitor tab

Hello!

Sometimes the "Source User" column is empty. What should I check in the settings?

PAN version 8.0.10

Thank you!

Upgrading from PANOS 8.1.3 to 8.1.4h2

Hello,

I'm currently running 8.1.3 on a pair of 3020s. Can I upgrade from PANOS 8.1.3 to 8.1.4h2, or do I need to install 8.1.4 first?

Many thanks,

Roberto

Issue in Retrieve framed IP address attributes from authentication server

HI Guys,

I have deployed radius server for authenticating the third party Ipsec clients.

When I connect to global protect from my mobile third party ipsec client it is getting connected via x auth support enable in global protect gateway and authent

...

Resolved! Policy not catching correct traffic

Hi all, first time poster so go easy!

We're running into an issue where a rule that is meant to catch ether-ip traffic on port 20033 is slipping through and being caught by a lower rule which allows any application and service. Rules as follows:

Whe

...

HA1-B down on 3200 series

I've been doing some tinkering with a pair of 3220s and am noticing that in the GUI it's reporting HA1 Backup is down in the HA widget of the dashboard if I use the HA1-B port. HA1-A is up, and if I use the management port for HA1-Backup, it comes u

...

Resolved! Yellow color still working global protect connection

when i try to connect to global protect - internal gateway it shows

in yellow

still working ?

does this mean it is trying to connect to portal or gateway?

Resolved! Adding a sub-interface to an exsiting Security Zone

Hi,

I have a Palo Alto with existing security zones managed via Panorama. I need to add an existing sub-interface to an existing security zone which has been done on Panorama and committed. However, after logging into the firewall node directly the s

...

Resolved! global protect client - config refresh test and verify

Is there any way i can test and verify the config refresh time in global protect client running 4.1.4?

move subinterfaces to new aggreagate group

Hey guys,

I got a pair of PA-3020s (8.0.7) and 2 ae's with a lof of subinterfaces. Each subinterface does have a gateway, security zone and vlan tag.

Out of permonance issues, I want to create a third ae with two new physical interfaces.

Then, I want to

...

Wrong user from access log

Hello!

The local user Administrator is logged in on the desktop and he is not allowed to access the internet. But he can access.

When checking in Monitor on PA220, I noticed that another user appears in the Source User column and not the Administrator

...

How to view searched words using custom reports

Hello Community!

I´m trying to see the searched words made with different search engines. For this I wanna create custom reports and look for terms on the URL log database with the help of different query builders. I´m following the idea of this doc:

...

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free