General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 1182 Views
  • 0 replies
  • 0 Likes

icloud email receiving but not sending

I can see the traffic using smtp on port 587 but everything end tcp-fin. Tried turning off decryption to me.com. Traffic hit the rule that allows any traffic out for this particular user and they are also exempt already from decyrption. What should b

...

Security Policy Granular to Address Group?

I have a group of computers that I want to apply a different security policy with a different Security Profile to.

 

I have created 2 Security policies.

The first policy = Internet Out allow any -  Trusted Zone to Untrusted Zone with the default 'basic

...

catrock by L2 Linker
  • 3282 Views
  • 4 replies
  • 0 Likes

Resolved! Simple Explination of Share Levels

I have read all the documentation, and have a test environment for MineMeld, but I still cant work out what share levels are being used for.

I was of the beleif that it was green=good (i.e. whitelist these) and red=bad (i.e. block these) however this

...

Aggressive cleaning feature

Hi,

I have a doubt regarding the aggressive disk cleaning feature introduced starting in PANOS 8.0.7. Details below.

To enable aggressive cleaning:
> debug software disk-usage aggressive-cleaning enable

To check if enabled (if enabled, this command will

...

SSL_ERROR_NO_CYPHER_OVERLAP

All clients are intermittently seeing "SSL_ERROR_NO_CYPHER_OVERLAP" when browsing secure web pages. This began just about half an hour ago. Any Ideas?

PA VM Interface Issue

Dear All,

 

I setup test lab with vmware workstation. only ethernet1/1 interface is up. Others are down mode. I have attached screen also . Please advice me.

 

Thanks,

Lakshitha.

Resolved! expired dhcp leases PA-3020 8.0.7

Hi all,

there is a dhcp server for a network with a lease time of 14 days. When I open the allocation, there are a lot of expired dhcp leases.

Doesn't the firewall automatically delete them?

MPI-AE by L4 Transporter
  • 5458 Views
  • 6 replies
  • 0 Likes

Where to mine all O365 endpoints?

Hi dear community,

I just implemented MineMeld server and configured EDLs and test policies.

For the MineMeld I used "o365-api-any-any.txt" from https://paloaltonetworks.app.box.com/s/ywkh7rc2rj0kyl0qetr6m6ag3akxvvx6/folder/51988433336.

Does anybody

...

CERTIFICATE VERIFY FAILED

Hello, I created a custom taxii client node type using cabby.

But I get an ssl certificate error. I'm behind a proxy.

When I run a test py using cabby, everthing works fine. But the node shows error.

As you can see, I've set verify_ssl=False. Could a

...

zulaa by L1 Bithead
  • 5814 Views
  • 1 replies
  • 0 Likes

Can a NAT IP be in my DMZ subnet

So I'm working through an IP migration when I thought of this question that I don't know the answer to and can't find an answer to with my Google skills.  Is it possible to assign an IP from the DMZ subnet as a destination NAT?  For example, if my DM

...

Lcroce by L1 Bithead
  • 3791 Views
  • 5 replies
  • 0 Likes

Resolved! 2 different portal configs on a single GP portal

Hello,

 

I currently have external contractors using on-demand globalprotect to remotely connect into the network. I have a new request to enable handful of internal users to access a specific server on mobile phones remotely.

if bought a GP gateway lic

...

  • 24170 Posts
  • 117 Subscriptions
Top Solution Authors
Top Liked Authors
Labels