General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 360 Views
  • 0 replies
  • 0 Likes

Resolved! moving old traffic logs to Panorama

 

Seems we forgot to configure log forwarding  on one of Firewalls and now we do not see any logs in Panorama

 

I was reading this link below

 

https://www.paloaltonetworks.com/documentation/80/pan-os/cli-gsg/use-the-cli/use-secure-copy-to-import-and-expo

...

MP18 by Cyber Elite
  • 4000 Views
  • 1 replies
  • 0 Likes

Can you use a URL directly in security policy?

I am trying to creat a basic security policy allowing ftp access to a list of url's.  I know that I could do URL filering & white list the urls & add the profile to the security policy but can you put a url directly in the destination address field? 

...

Resolved! Physical interface zone assignment

Hello guys,

 

one really simple question, I hope.. when I configure subinterfaces and put them in separate zones, do I necessarly have to put also the physical interface in a zone?

If yes, could be some sort of null zone created only for that?

 

Thanks

 

Shye80 by L1 Bithead
  • 2633 Views
  • 3 replies
  • 0 Likes

Resolved! Public CA signed certificate

 

Need to confirm on certificate if  only CA option is checked  then it is Public CA signed certificate?

 

which type of cert it is when only CA option is checked?

 

 

 

 

MP18 by Cyber Elite
  • 2453 Views
  • 3 replies
  • 0 Likes

Resolved! nested device group

i am trying to understand below from admin guide

 

Without a hierarchy, you would have to configure both function- and location-specific settings for every device group in a single level under Shared.

 

if anyone can explain me in more detail that will b

...

MP18 by Cyber Elite
  • 2563 Views
  • 2 replies
  • 0 Likes

Resolved! log forwarding to m500 and SIEM

 

we have panorama in active and passive and all firewalls are connected to it.

We have m500 log collector and when i run below command 

 

sh logging status 

 

i see the firewall is sending logs to m500

 

also we have configured logs to be send to SIEM.

 

1>Ne

...

MP18 by Cyber Elite
  • 5574 Views
  • 8 replies
  • 0 Likes

Resolved! GlobalProtect restrict to approved devices

Hello,

 

I am trying to restrict what devices users can log in to GlobalProtect with to only machines that we have given them.  Since all of those machines would be domain-joined, I would expect that I can import an AD group that contains those machine

...

  • 23834 Posts
  • 112 Subscriptions
Top Liked Authors
Labels