General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 357 Views
  • 0 replies
  • 2 Likes

Yahoo Mail Client

We recently started experiencing a problem with Yahoo app on Android devices or the Yahoo client from receiving email through our PA's.  Has anyone experienced a similar problem?

 

Thanks in advance.

Raimson by L0 Member
  • 2235 Views
  • 3 replies
  • 0 Likes

Resolved! routing problems between wans and lan

I recently inherited a Palo Alto PA-3020 in a place i've been working and I'm wondering if anyone would be able to help me out on a config error i've been having I'm trying to get a setup like in the visio diagram below but there seems to be some rou

...

Drawing1.png
kclarke6 by L1 Bithead
  • 3393 Views
  • 5 replies
  • 0 Likes

Resolved! app-id changed for mssql-db-base

We just noticed that what used to show up as mssql-db-base is now showing as mssql-db-unencrypted. Yep, this is internet stuff that we know is not encrypted so that makes sense and the first thing I did was check to see if there wasn an app-id update

...

2018-09-26 15_29_15-a little digging - Message (HTML).png
hshawn by L4 Transporter
  • 11309 Views
  • 1 replies
  • 0 Likes

Aerohive Log / User IDs / Device Mac

Hello,

 

we have some Aerohive WiFi access points and they are managed with the HiveManager.
Now when a user logs on to a WLAN SSID with his hive user and then surfs, you only see the internal IP of the access point in the Paloalto Log. If several users

...

Teamviewer is not blocking

Hi,

 

I have PA-820 with fully updated signatures, I have blocked Teamviewer via security policy. PA is recognising the application and traffic log showing that teamviewer connection is blocked but on host machine teamviewer is running and outbound / i

...

Okta Admin Authentication on HA deployment

Hi,

 

I have configured multiple Active/Passive firewalls for Okta SSO (admin authentication) this is working as expected on the active devices, however I was planning to use a separate authentication profile for the passive devices. Everytime I push t

...

PA-3220 HSCI port's LED is not light up

I've got two new PA-3220s in HA (active/passive). Active firewall's HSCI port does not light up green LED, whereas passive light up green. I used an SFP+ and MM cable (tried Twinax as well). I have a replaced firewall for active firewall, but it stil

...

Active_No HSCI LED.jpg
Passive_HSCI Ok.jpg

Resolved! threat packet captures impact on cpu

Hello.

I would like to enable some packet captures on certain threats and was wondering if anyone has tested if there is an impact on the mgmt plane cpu when enabling extra pcaps?

I know enabling packet capture has an impact on cpu. however I would thi

...

Clientless App feature enable BUG 8.1.3

The only I can describe this configuration is that is is a bug. I do not see any reason why such a feature would exist and not be clearly documented.

 

Issue: When commiting that change after deploying a GlobalProtect Clienless app a warning would appe

...

Resolved! authetication override

Why is it necessary to enter "generate cookie for authentication override and accept cookie for the authentication override on both the portal and gateway? I would think it would make more sense to select generate cookie for authentication override o

...

jdprovine by L4 Transporter
  • 3806 Views
  • 6 replies
  • 0 Likes

logical interface packets drops

Hi,

 

we are experiencing this issue that we are troubleshooting from a couple of days. we have done all our checks WAN and LAN side however there is a paloalto firewall between WAN routers and core switch in a Vwire mode with an any-any rule. the only

...

qasim02 by L2 Linker
  • 2533 Views
  • 3 replies
  • 0 Likes

Resolved! how to get CA trusted root cer for global protect url

 

Hi,

 

We have external global protect gateway with dns name.

when users browse to domain name they get warning message certificate is not trusted.

 

How can i get trusted cer from CA like go daddy so that when remote users download the GP client they do

...

MP18 by Cyber Elite
  • 1966 Views
  • 1 replies
  • 0 Likes
  • 23675 Posts
  • 108 Subscriptions
Labels