General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 243 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3556 Views
  • 2 replies
  • 14 Likes

Resolved! Panorama VM-Series Multiple Interface support

Hi Guys,

 

We are planning to deploy virtual Panorama for one of our customers on ESXi platform. One of the requirements is that customer wants to have read-only access to the Panorama management. So we were discussing the solution to attach two interf

...

FW Logging Prefix list

Can any one confirm that when we configured log collector group with two managed log collector (both active and passive Panorama's) and if see the logging status on the firewalls does it show only the Active Log collector or both Active and Passive l

...

Sanssj by L2 Linker
  • 1739 Views
  • 2 replies
  • 0 Likes

Resolved! Filtering for security policies with DSRI enabled

Has anyone found the syntx to search in the security rule-base for any rule that has "disable server response inspection" enabled.

I attempted using 

disable-server-response-inspection eq 'yes' and other modifications of that similar syntax with no luc

...

URL recategorization

Hi,

 

I would like to know how I can receive details on why a URL is placed in certain category and not another.  I have a specific one that I submitted (nbcnewyork.com Palo Alto states is Entertainment and Arts) however the employees submitting this f

...

NAT allocation during a pool configuration.

Team,

We have a NAT pool configured for one of the ongoing requirements. Is there a way to force this pool to allocate IP address from start to end as per new requests come in?

 

e.g. NAT pool configured is 10.10.10.1 to 10.10.10.10

IP source is anything

...

nson2139 by L3 Networker
  • 2203 Views
  • 4 replies
  • 0 Likes

Security Policy not HIT after work for 1 month

I got setup 6 AWS VPC with direct connect connection to on prem panorama, which is working fine for a month, and now suddently all 5 VPC disconnected from panorama in the same time.

 

i checked the BGP and IKE all established, i can ping the panorama I

...

Resolved! PANOS 7.1.x Internet Explorer web management slow

Hi,

 

I upgraded our FWs from 6.1 to 7.1 a few weeks ago and ever since the web management access from Internet Explorer is painfully slow to load - takes around 1 minute to bring up the dashboard after logging in or contexting from Panorama to a firew

...

JackGray by L1 Bithead
  • 3083 Views
  • 3 replies
  • 0 Likes

Resolved! Session Timeout Settings

Hi,

we are using a PA environment in combination with Bluecoat Proxy SG for caching and user authentication. Bluecoat describes on his knowledgbase KB3323 the differences for session timeouts on proxie servers and firewalls.

From our proxies I have man

...

PA System Logs

Dear Expert ,

 

I need to get all System messages of PA in case of the below Events

 

  • CPU Errors, warnings.
  • Memory, RAM utilization warning, problem.
  • Hardware failure, problem. .(Physical Events)
  • Links , interfaces down.
  • Processor warning.
  • Disk warning.
  • Fan wa
...

hi Community

Hi all,

 

We have upgraded globalprotect version 3.1.4 to 4.1.2. Its connected successfully . But after some time it saying portal not available. username take as portal name. anyone experience with globalprotect 4.1.2???

Resolved! Palo-Cisco VPN Logs

Im setting up a s2s vpn between a Palo and a Cisco ASR. The GUI is showing it all as up - green lights and ike tunnels. But the logs are showing the below:

 

IKEv2 child SA negotiation is failed message lacks KE payload

 

I am not sending traffic down th

...

welly_59 by L3 Networker
  • 5196 Views
  • 5 replies
  • 0 Likes

Custom HIP Check for Linux

Hey guys,

 

I've been tasked to have Globalprotect only allow company owned devices over the VPN. I know I can create custom HIP checks for Windows/Mac (reg/plist value). How would I do the same for Linux clients?

 

I have two end users that work remote,

...

  • 24169 Posts
  • 100 Subscriptions
Top Liked Authors
Labels