General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Hide Global Protect redirection

Hello team

We have already hidden the global protect pages so that our users can only access through the client, however, we have detected that when we type the ULR or IP in a browser there is an automatic redirect that adds /global-protect/login.esp

...

Hide Global Protect redirection

Hello team

We have already hidden the global protect pages so that our users can only access through the client, however, we have detected that when we type the ULR or IP in a browser there is an automatic redirect that adds /global-protect/login.esp

...

Resolved! Remove Device Certificate

We would like to remove the device certificate from a couple of our firewalls. We don't use or need the device certificates at this time and would prefer them not be installed.

I tried to do a factory reset and the certificate automatically downlo

...

For assessment retake

i want to retake my palo alto cyber security final assessment because of some internet issue i dint took the assessment properly so kindly help me

MTU size clarification at Interface and Sub-Interface level

Hi All, If we set mtu value as 9192 in interface and 9072 as sub-interface, which one the sub interface choose. If it will choose 9072, would that mean 9072 size packet can be sent. Similarly, If we set mtu value as 9192 in interface and kept the sub

...

Does anyone have any experiences or "gotchas" they'd like to share when they've implemented Riverbed Steelhead appliances behind PA firewalls?

I see that there's a 'riverbed-rios' app listed in Applipedia, which gives me some hope.

Specifically what I am concerned about is discussed here (with configuration examples for PIX/ASAs):

http://www.dslreports.com/faq/16494

The Riverbed appliances we

...

Traffic logs doesnot have a corresponding URL log

I am trying to perform some forensics into a user activty but Palo Alto logs are not really helping me a lot. I mean, I see a traffic for some IPs but when I click the maginifying glass icon, I see the category in it but not the actual URl. I have ch

...

Resolved! Different Temperature Sensors

I need to know what is the difference between those three sensors please,
S1 CPU Die temperature sensor

S1 U9 temperature sensor
S1 U66 temperature sensor

After adding the temperature reading of PA device to PRTG the above indicators were sh

...

Resolved! Unable to Authenticate to GP using SMAL

On PA 8.1.19 we have configured GP portal and Gateway for SAML authentic in Azure.

We have imported the SAML Metadata XML into SAML identity provider in PA.

Authentication Failed

Please contact the administrator for further assistance

Error code: -1

Whe

...

helps generate an XQL to notify when a USB is connected

I am trying to use Cortex XDR so that when a user connects a USB storage device I receive a notification by email.

so far I have used this XQL:

preset = device_control
| filter event_sub_type = ENUM.DEVICE_PLUG

which tells me when any USB device

...

Resolved! Cluster config question

Hi to all, I have a question regarding the cluster config tab (i have attached a picture). There we are adding the peers only, or we have to add also the same device I am a configuring. For example I have 3 devices, That table of devices should be th

...

Difficulty getting help Tried contacting administrative help for palo alto, was rereferred to TD Synnex, no solution, hung up on by palo alto next...

Resolved! Unable to Upgrade from 11.1.3 to 11.1.13

Hi, I am having a problem to upgrde, with the objective of upgrading my PA-460 standalone from 10.1.13 to 11.2.0.

I performed the following:

Download 10.2.0 install and reboot;

then maintenance release then the last 10.29 -h? release and reb

...

Resolved! PAN OS 10, Two devices on different subnets in the same zone

We are running a Palo 5220. If we setup two different virtual interfaces with two different IP subnets in the same zone. Will I need to setup security policies to allow the two different subnets in a single zone to communicate. or will the Palo route

...

Add OSPF Route Tags

Hi,

I need to amend my routemap redistribution filter to set a tag to the routes in my referenced prefix list.

My question is, when doing this on a live firewall, will this require OSPF to re-converge?

Thanks

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free