General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Paloalto recommendation

Hi Team,This is a notification for Palo Alto support officials.I have seen many customers upgrading to latest PAN OS without knowing bug involved in it.I request Palo Alto support team to add this option like next to the date whether that version is recommended orNot recommended.If not atleast by mentioning * for the recommended version . When c...

PA8.1 RIP Question

Hi, I have a linknet with 2 routers exchanging RIP information. I want to add a PA3020 to this linknet and I want it to learn all the RIP routes. However I do not want it to advertise anything. What is the default behavior of RIP in PA, will it advertise all connected, static, etc by default? /WW

Data Pattern Regex

Hello community, I'm having trouble with the following regular expressions in PaloAlto version 7.1.21. (518497 | 518472 | 518536] {6}) ([0-9] {10})([503441] {6}) ([0-9] {16})It works on different platforms, but not on the FW.I have managed to make it work in part, in the following way: . * ((SensitiveData) | (518497) | (518472) | (518536)) But t...

Resolved! Doing destinat NAT with Cisco ASA

I need to build tunnel with Cisco ASA.Seems vendor's interesting subnet 10.2.2.x is part of our LAN. If i config on PA vendor interesting subnet as destination 192.168.1.x and translate to 10.2.2.x in PA is this right way? Mike

MP18 by Cyber Elite
  • 5103 Views
  • 4 replies
  • 0 Likes

Resolved! User Agent Empty

Hello, I just enabled HTTP Header Logging for my URL Filtering Profile, but the only User Agent recognized is Mozilla. I am missing Chrome, for example. There is no User-ID Agent used. kind regards

Password expired date doesn't HA sync

Hi I have a problem about Password expired date HA sync.I have four pair of Paloalto firewallPA-5020(7.1.8)PA-3020(7.1.10)PA-2050(7.1.10)*2I config password expired in Device->Setup->Management->Minimum Password Complexity->Required Password Change PeriodAfter the first password expired date, I change my password and find out a probl...

Artsun by L0 Member
  • 2421 Views
  • 1 replies
  • 0 Likes

Teams Online with “Direct Routing” Topology AppID?

Using ExpressRoute today for O365 but moving to (Direct Internet Access) DIA to reduce backhauling enterpirse traffic. Obtained the requirements from MS, they are extensive. I don't see a specific AppID for Teams Direct Routing. Anyone doing this today & any plans for AppID creation?

bdf.png
MS Teams.jpg

Nodes not loading

Good moorning all, I have an issue with nodes. After some hours tab nodes say loading, however it will not load. #chassis if everything ok say "2", however, when nodes stop loading it says 1. Hope to find some help. Best Regards,Tiago Santos

MineMeld custom processor / output node question ?

Hi all, I have a customer that is asking if we ingest thier ThreatConnect feed into MM, could a custom processor / output node be built that sends destination IP address,port 192.168.0.11,43 and then they would like this PUSHED from the output node to another system for ingestion ? I've seen the standard IPv4 processor and output parame...

MineMeld - SSO via SAML, OAUTH, etc.

Has anyone explored creating a separate "SsoController" for the UI? I'm thinking it could run in parallel to the basic auth system, which would still be used for API access (and cases where SSO was broken).

Help needed

Hello, i cant install. after starting GlobalProtect64.msi, only the following message appears

global_protect.JPG

Certificate can not be deleted

Hi, Im having a weird issue in Palo Alto. First of all, we dont have vsys configured but in the confgi we can see the field <vsys> and many config in it.Basically whn we run a commit we receive a warning about "certificate duplicate". We go to devices-> certificates and we can only see one certificate with that CN. But if we check the ....

BigPalo by L4 Transporter
  • 10902 Views
  • 3 replies
  • 1 Likes

Resolved! Renew SSL Certificate

Hello, Can someone please provide link/instructions for renewing expiring Panorama SSL certificate with a .pfx certificate? Also, please provide the instructions for the Palo Alto devices as well if they also require SSL certificates. Thanks in advance.

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels