General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 536 Views
  • 0 replies
  • 0 Likes

Global Protect portal -- Multiple Client Authen

 

I have configured GP  portal       under client Authen

 

I have configured two one is Radius and other is test -- local database

 

Radius is at top and below it is test using local database.

 

When i use the local database account authen does not work.

 

To

...

MP18 by Cyber Elite
  • 2448 Views
  • 3 replies
  • 0 Likes

Resolved! Qos on Citrix Connection from Internet users

 

we need to apply qos on citrix users coming from the internet.

should i apply qos on lan egress?

 

which application i should use for citrix?

OR should i apply qos on public ip of citrix ?

MP18 by Cyber Elite
  • 2831 Views
  • 3 replies
  • 0 Likes

How to configure a miner to pull from a generic API

 

Is there currently a prototype miner that can be configured and used to pull from a generic API? 

 

My example is Infoblox, but I can see this working with multiple infrastructure tools. I'm working with both AutoFocus-hosted Minemeld, and the stan

...

chmotley by L2 Linker
  • 16841 Views
  • 20 replies
  • 0 Likes

Resolved! GlobalProtect portal user authentication failed

we have global protect portal configured and both portal and gateway have same ip assinged.

we have configured RADIUS for auth.

 

Also under Auth profile we have Radius as a profile name

 

When client connects he gets message

 

GlobalProtect portal user aut

...

MP18 by Cyber Elite
  • 77131 Views
  • 3 replies
  • 0 Likes

Resolved! Office 365 returning 0 indicators

I just noticed my Office 365 indicators are reporting zero for all Office 365.  I originally installed 0.9.46 and it had been working great for a few months.  After I noticed this I figured it had something to do with MS change from xml to json.  My

...

Resolved! Commit not working in passive firewall

When I commit the firewall in active firewall I can able to commit.

 

When I commit in passive firewall it shows "Error: config push error"

 

However I don't need to push the configuration in passive firewall I'm doing this as my HA sync is having issue.

...

image.png

Resolved! Palo Alto - Dynamic Updates

Hi !

 

I'm new to the Palo Alto Firewalls. I have query about the content updates for the PA Devices has TP licenses. We are pushing updates through Panorama.

 

Q1: I can install only  one Active AV or threat updates to the firewall . Since this the new

...

gpsriram by L1 Bithead
  • 1957 Views
  • 1 replies
  • 0 Likes

Resolved! Captive Portal and MFA

 

I have configured captive portal with MFA.

Primary auth method is radius and secondary is duo-security.

 

Under network  

 

Global Protect

 

Portal config is done

 

Do I need any config under gateway???????

 

My understanding is that we need  gateway config on

...

MP18 by Cyber Elite
  • 2071 Views
  • 1 replies
  • 0 Likes

Resolved! Purpose of Authen Profile under Global Protect Gateway

 

We have configured MFA using CP and using RSA as Second  authen.

 

Under Network

 

Portal                   Authen--------------Radius

 

Gateway             Authen ----------------Radius

 

Under Device

 

CP  -  Authen ---------RSA

 

Why we need Authen profile u

...

MP18 by Cyber Elite
  • 2302 Views
  • 3 replies
  • 0 Likes

show counter global filter delta yes -----drops

when i run command

 

show counter global filter delta yes

 

i see below counters incrementing  need to understand which are these drops and why PA is dropping these packets?

do they impact the performance of the PA?

 

flow_tcp_non_syn_drop    

 

flow_fpga_egr

...

MP18 by Cyber Elite
  • 4718 Views
  • 2 replies
  • 0 Likes

Resolved! logical int counters - packets dropped

 

 

Logical interface counters read from CPU:
--------------------------------------------------------------------------------
bytes received 21513660
bytes transmitted 2835
packets received 358561
packets transmitted 21
receive errors 0
packets dropped 35853

...

MP18 by Cyber Elite
  • 4359 Views
  • 4 replies
  • 0 Likes

Palo alto HTTPS decryption?

Hi all,

 

I am using PA-850. I configure to decrypt HTTPS, and use AD group policy to install certificates on client, it works well with AD users. but we have other situation that client is not AD users. do we have any ways to redirect client to the UR

...

Chivas by L2 Linker
  • 4811 Views
  • 6 replies
  • 0 Likes
  • 23904 Posts
  • 113 Subscriptions
Labels