This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 254 Views
  • 0 replies
  • 1 Likes

SSL Decryption Exclude List - correct syntax?

What is the correct syntax to exclude a whole domain, including subdomains and pages from SSL decryption?

 

Say exclude all URL's from "test.com", would this suffice:

 

*.work.com

 

or would i need to include a list like:

 

*.work.com

*.work.com/*

*.www.work.c

...

welly_59 by L3 Networker
  • 1659 Views
  • 1 replies
  • 0 Likes

IPsec VPN throughput

configured site to site ipsec vpn between PA 820(head offc)XG firewall (branch offc)successfully. in the head offc we have 100 mbps download , 25 mbps upload speed and brach we have 100 mbps download and 50mbps upload speed. the vpn performance is ve

...

GP pre-logon for IOS devices

Hello community,

 

I was wondering if is possible to make Globalprotect for IOS or Android devices to work properly with connect methods other than on-demand, for example pre-logon. Did anyone accomplish this connection method??

 

 

Thanks and Regards,

Mar

...

Carracido by L3 Networker
  • 2119 Views
  • 1 replies
  • 0 Likes

Palo Alto main and sub urls are different category

I have requested palo alto uel re categorzation team for re categorizing the main url of a site for ex: 

abc dot com.

It has re categorized correctlly by Palo as requested. However I am getting  blocks when I access abc dot com /subdomain

When i try re

...

Best practice for Palo Alto Uplink

We are looking to deploy our new boxes (PA-3220) in HA in the next few weeks. We are trying to go with best practice methods. 

 

Currently, we have an Layer 2 ae interface that has multiple subinterfaces. Each subinterface is tagged with a Layer 3 SVI.

...

Global Protect DHCP config

With our firewall for VPN and DHCP all we configure is under GP gateway/agent/client settings we have an IPpool and address route.  We need to add DHCP option 160 and I don't believe that it can be done on the Palo.  We have never setup a  DHCP relay

...

Resolved! Register new management IP address of PA to Panorama

My PA is already connected to the Panorama.

I had to change the Management IP address. 

The PA lost connection to the Panorama.

The Panorama shows the PA with old IP and status Disconnected.

Is there a way to update the IP of the PA on the Panorama, or f

...

Resolved! Traffic going through Management port

Hello All,

 

We were setting up a PaloAlto Firewall and made all the basic configuration to make a test on the production environment, however when connecting to the production environment, we could see that all the traffic from the PaloAlto firewall w

...

Resolved! Decryption Broker License

I can't activate the Decryption Broker License in the support portal. There is only the Decryption Port Mirror License available. Is there anything to do before? Or is there an additional subscription for this?

hermey by L1 Bithead
  • 2265 Views
  • 2 replies
  • 0 Likes

Panorama & "Managed Devices" unable to connect

I believe I have set up the Panorama and Firewalls correctly as per a few different KB articles I've read. I've check connectivity between the MGT interfaces, made sure that the attempts weren't being denied due to the fact that "permitted IP's" were

...

aayoung by L1 Bithead
  • 2522 Views
  • 2 replies
  • 0 Likes

Support PC which is connected via global protect.

When user is connected via global protect. How can destop support person connect to user pc who is logged in via global protect. I tried with desktop connected to global protect and then trying to access user pc who is also connected via global prote

...

  • 23627 Posts
  • 107 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks