General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 326 Views
  • 0 replies
  • 2 Likes

PA VM licensing issue between support accounts

Hi,

 

Although looking through this in internal sources as well, but maybe you guys have seen this and have an idea.

 

Initially there was PA VM-100 trial registered in Support Account 1 - partner account. Everything's good.

Trial expired, full license wa

...

nikoo by L3 Networker
  • 4519 Views
  • 3 replies
  • 0 Likes

Web-Browsing default port application

Hey , 

 

i just wondered why in the era that all web traffic is moving forward beeing encrypted and browsers like chrome will soon mark websites that uses HTTP protocol as "unsage" paloalto "web-browsing" application still uses in it's default ports on

...

minow by L4 Transporter
  • 21675 Views
  • 5 replies
  • 0 Likes

Re:Minemeld Miner Config

Hi guys,

How can we creat a prototype miner in the MInemeld hosted by autofocus, is there any tech document with regards to how to customize/config a prototype for Miner.

Thanks 

Sanssj by L2 Linker
  • 2699 Views
  • 1 replies
  • 0 Likes

Resolved! Decryption servers same ip

Hi,

 

We need to decrypt traffic (SSL Inbound Inspection) for a server which is running 3 URL. This server has 3 certificates, one per application.

 

So we would like to decrypt traffic for this 3 applications but in decrypt policy we only configure usin

...

BigPalo by L4 Transporter
  • 1923 Views
  • 1 replies
  • 0 Likes

Resolved! Upgrading a stand alone PA-Firewall 3020 to a HA-Cluster

Hello everybody,

 

is there any article or best practice document which discribes the configuration of a Palo Alto 3020 Firewall HA-Cluster active/passive while there is already a working stand alone PA 3020 Firewall.

 

Is it the same way I configure a H

...

Mvdohe by L1 Bithead
  • 4457 Views
  • 5 replies
  • 0 Likes

Re: Vwire and L3 Deployment Decryption

Hi,
I would like to know the way it operates in the backend how palo alto does the SSL decryption in Vwire mode . As in a L3 deployment the connection will terminate on the firewall and firewall acts like a MITM and does the SSL Proxying. How is the c

...

Sanssj by L2 Linker
  • 1829 Views
  • 1 replies
  • 0 Likes

SSL Decryption Exclude List - correct syntax?

What is the correct syntax to exclude a whole domain, including subdomains and pages from SSL decryption?

 

Say exclude all URL's from "test.com", would this suffice:

 

*.work.com

 

or would i need to include a list like:

 

*.work.com

*.work.com/*

*.www.work.c

...

welly_59 by L3 Networker
  • 1671 Views
  • 1 replies
  • 0 Likes

IPsec VPN throughput

configured site to site ipsec vpn between PA 820(head offc)XG firewall (branch offc)successfully. in the head offc we have 100 mbps download , 25 mbps upload speed and brach we have 100 mbps download and 50mbps upload speed. the vpn performance is ve

...

GP pre-logon for IOS devices

Hello community,

 

I was wondering if is possible to make Globalprotect for IOS or Android devices to work properly with connect methods other than on-demand, for example pre-logon. Did anyone accomplish this connection method??

 

 

Thanks and Regards,

Mar

...

Carracido by L3 Networker
  • 2127 Views
  • 1 replies
  • 0 Likes

Palo Alto main and sub urls are different category

I have requested palo alto uel re categorzation team for re categorizing the main url of a site for ex: 

abc dot com.

It has re categorized correctlly by Palo as requested. However I am getting  blocks when I access abc dot com /subdomain

When i try re

...

  • 23666 Posts
  • 108 Subscriptions
Top Liked Authors
Labels