General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 966 Views
  • 1 replies
  • 9 Likes

TAXII or STIX generic miners?

Is it possible to have TAXII or STIX generic miners for internal custom feeds? We are exploring the data sharing between different vendors for our internal environment and instead of waiting for the vendor to come up with the integration, rely on ext

...

Resolved! Connection aborted error when 'running' miner job

I'm seeing error indicators for 3/4Miner nodes.  The error is ('Connection aborted.', gaierror(-2, 'Name or service not known'))

 

I would suspect this is not desireable and would like some direction how to fix that?  This is a new installation which

...

Miner.PNG

GlobalProtect Data File will not install

Greetings,

 

I upgraded to PAN-OS 8.1 / GP 4.1 in order to take advantage of the new interface.  This is a new deployment and I didn't want to roll out the old interface to the users.

 

Everything went smoothly except for HIP/OPSWAT v4.  I followed the i

...

Resolved! Query on multi Gateway in GP

Hello,

 

We are running PAN-OS 8.0.7 and require a second external gateway to connect a POS server (which can run the GlobalProtect client fine). The configuration has been done and the client successfully authenticates but for some reason the Agent co

...

Farzana by L4 Transporter
  • 2187 Views
  • 3 replies
  • 0 Likes

GlobalProtect SSO with SAML

Hello,

 

I have a customer who is having a unique issue with Global Protect using SAML.  The problem is not directly related to SAML but he states that prior to changing from RADIUS to SAML the issue did not exist.  The issue is with SSO. The customer

...

tsanger by L3 Networker
  • 1602 Views
  • 0 replies
  • 0 Likes

File Blocking doesn't work with Layer2 Mode

Hello

I want to make a POC with one of our clients but we have a problem.

I configured PaloAlto on Layer2 mode, with Two Layer2 Interfaces, using this guide: https://live.paloaltonetworks.com/t5/Featured-Articles/Getting-Started-Layer-2-Interfaces/ta-p

...

Issues with custom log format in Panomara 8.0

Hello Community,

I have a doubt about syslog server profile in 8.0.

This is the scenario.

One panorama cluster running like a panorama and collector. All firewalls send your logs to panorama and panorama send to our syslog server.

When the syslog profile

...

Apadilla by L3 Networker
  • 1212 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect with MFA/Dual Authentication

I've been looking up and down and can't seem to find a solution. I'm trying to authenticate to the GlobalProtect gateway or portal via Radius (which is tied back to AD) then to DUO for MFA. 


The user should point to the portal/gateway, receive a usern

...

How to Block specific HTTPS Sites?

Hello,

 

I'm struggling to block some internal https sites.

 

I have to block various sites/urls of a server from a specific zone, while I have to keep some others open 

The urls look like:

https://servername.suff.dom:8443/aaa/bbb/ccc/ddd/eeeee_ff_applicat

...

PhLang by L1 Bithead
  • 1952 Views
  • 5 replies
  • 0 Likes

Replacing PA500 with PA220

Currently have a PA500 (in virtual wire mode). Ordered a replacement PA220. I followed the instructions on connecting to the new unit and assigning a new IP address. It too is in Virtual wire mode. I need to understand how to transfer my configuratio

...

jharlow by L3 Networker
  • 2578 Views
  • 3 replies
  • 0 Likes

Authentication Tab Error

 

Hi 

 

After upgrading to 8.1 version, I can not see the Authentication and User-ID tabs

this happens only with my user

 

authentication tab

Screenshot_1.png
Frazão by L1 Bithead
  • 1323 Views
  • 1 replies
  • 0 Likes

GP 4.1 msiexec syntaxes broken...?

So,

 

While testing GP 4.1 I came accross the following issue:

 

As per the admin guide for GP msi deployment, you can deploy the client using the following syntaxes:

 

msiexec.exe /i GlobalProtect.msi /quiet PORTAL=”portal.acme.com”

 

When doing this on the

...

Top Liked Authors