General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

URL Filteting question

We received an alert about the behavior of the virus. The malicious loader is downloaded from the URL of compromised legitimate sites, where it is disguised as an image.The URL by which the malicious loader is hosted, all addresses end with the string abc.jpg. The string in the URLs where the encryptor is hosted is:hxxp://[anything]/abc.jpg I re...

aaobuhov by L2 Linker
  • 7043 Views
  • 7 replies
  • 0 Likes

Passive Node not showing recent config

Hello, We have a cluster of two palo alto 850, the passive node is not syncing config with the active node despite dashboard claiming they are in sync. Pushing the config from panorama is successful however the passive node does not show the most recent config.How do we fix this issue? Thanks in advance!

User-ID & Fast User Switching?

Is there a best practice for making the Palo able to realize who is currently actually logged onto the machine, or are we forced to disable Fast User Switching for this? (Windows 10) I know currently that if user A logs in, it knows it's A. If we switch user and B logs in, it then knows it's B. However if we switch user back to A, the logs ca...

Resolved! Admin Roles restrict commit from Panorama

We have Panorama managing the firewalls.certain admin role name we do not want them to do commit on the panorama and firewall. so we want if user log into panorama and from there if he go to firewall context or he directly log into firewall thencommit should be disabled. I logged in to the panorma and under panorama admin roles i disabled the...

MP18 by Cyber Elite
  • 3655 Views
  • 2 replies
  • 0 Likes

How to install self signed certificate to Android phones

hello allafter upgrade to new GP 4.1.8 there is some kind of problemThe phones try to connect to portal and gateway and after it we get security warning but we continue and get connectedBut then when we try to connect ones more the GP says it is failed. We must re-enter the login and password againIs it some way to stay connected on GP even if y...

Radmin_85 by L4 Transporter
  • 6174 Views
  • 1 replies
  • 0 Likes

EDL for Free Email services?

I'm looking for an EDL that would have all the free email services (@gmail.com, @yahoo.com, @hotmail.com, etc..) Is anyone aware of anything like this, that is maintained, or would we need to build something?

Resolved! QoS

Hi Community, I am having some queries about PA qos.My requirment is for example, i need to control upload in following scenarioI have a 50 mbps link from ispi have clear and tunnel traffic,My tunnel traffic should not go beyond 25 mbps in any scenario (even if other traffic is not there).Clear traffic shoul always preffered. ie if i have 45mbps...

Packet drops in LAN interface,..

Hi All,For a 5 minutes we are unable to access internet ( even not able to ping next hop router), We observed that there is a packet drops in PaloAlto LAN interface, below snap shows the same. Can any body give the reason for this packet drops?Please help me to identify the root cause,.Thank you,Guru

Gururaj by L4 Transporter
  • 15474 Views
  • 10 replies
  • 0 Likes

Need some suggestion about the routing between 2 internet outgoing interfaces

I recently submitted a case to PA support about 1 of the internet facing interface cannot contact outside nor contact from outside. Use ping to diagnostic and found that the ping (request) and ping (reply) use 2 different route ). This is because the 2 interfaces has its own zone and for different purpose:1. Staff use the 1st data line, and use ...

jeremylo by L3 Networker
  • 2660 Views
  • 2 replies
  • 0 Likes

Resolved! Feature Request: Panorama: Managed Devices Summary for Dashboard

One of the most common at-a-glance sections of Panorama I use for overall environment status is the Managed Devices Summary page. This is the only / easiest place I know of to check on the HA status, Policy and Template Sync state and Last Commit state for all managed devices at once. I would really like to be able to view this information as a ...

bgolub by L0 Member
  • 3125 Views
  • 2 replies
  • 0 Likes

Question to Signal, Skype and Google Hangouts video calls

Hey guys,When I want to do a video call with Signal messenger, I need to add two rules: Rule1:App: SignalService: application default Rule2:App: STUNService: any Signal accesses random destination ips on random ports. Skype and Google Hangouts need those rules: App: Skype, Google-HangoutsService: application default App: rtpService: application ...

MPI-AE by L4 Transporter
  • 3587 Views
  • 1 replies
  • 0 Likes

how to download the ca certificate for the anydesk

HI Team I getting an error while connecting to any desk error code: could not connect to any desk network SSL_14090086I tried to add the SSL decryption list but still, the issue remains how to add the trust certificate for any desk and is there any link to download ca certificate

HemanthV by L2 Linker
  • 8763 Views
  • 1 replies
  • 0 Likes

Resolved! User not in Allow list

Hello, We use SAML authentication profile. with PAN-OS 8.0.13 and GP 4.1.8. Followed the document below but getting error: SAML SSO authentication failed for user. Reason: User is not in allowlist. http://saml-doc.okta.com/SAML_Docs/How-to-Configure-SAML-2.0-for-Palo-Alto-Networks-GlobalProtect.html We have verified our settings as per the guide...

  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels