This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4106 Views
  • 0 replies
  • 0 Likes

Certificate Setup on HA Pair

Hello, I wanted to use the SSL/TLS profile facility to restrcit management GUI sessions to TLSv1.2 but am having trouble with the certificates/process to follow. We have an Active/Passive HA Pair, i have been trying to setup on the passive to test but it is not working, from having a look around i susepct this may need to be setup on the Active...

Resolved! Default Master Key lifetime

Dear Comm, I do understand that we use the master key for encrypting our private keys and passwords stored on the firewall. However I am wondering why we should touch this key at anytime? What is the default lifetime of the default master key? I assume it to be 0 (=infinite) as I cant find anything about this question even in the PANOS admin gui...

Rboehme by L2 Linker
  • 6281 Views
  • 2 replies
  • 0 Likes

ldap user group unable to get access

I have ldap server setup with auth profile. User gets authenticate by ldap server and can login via global protect.User is part og the group and a policy is created for this group to access resources.If i change the group to any access is granted but not with specific group in policy.

Regarding pcnse

What is the level of toughness that we have in real exam than what we see in practice test on a scale of 1-5.Is there any good pcnse practice tests that match the level of real exam. The only source of my prep is just the pcnse study guide is there any book that is recommended.Thx.

Sanssj by L2 Linker
  • 4474 Views
  • 3 replies
  • 0 Likes

Resolved! Datafeed Empty Indicators

Dear group; I had running Minemeld server with defautl Miner like that spamhaus_DROP, spamhaus_EDROP working fine. I Create a Custom Miner of prototype libraesva.LIBRAESVA_Advertising_IP4 with the follow info: Miner: LIBRAESVA_Advertising_IP4-feet2CLASS minemeld.ft.http.HttpFTPROTOTYPE libraesva.LIBRAESVA_Advertising_IP4Processor: aggre...

Resolved! BPA tool

I was told that we can use a tool called Best Practice Assessment. Have you got the link/app to access it?

Farzana by L4 Transporter
  • 17344 Views
  • 8 replies
  • 1 Likes

Resolved! Global-protect configs

I changed global-protect configs by GUI then I checked the following 2 items was changed which I had never changed.Would it happen If I changed it by CLI? and is it by design? The 2 itemsGlobalProtectPortal configuration > Agent > Configs > App・Set Up Tunnel Over Proxy (Windows & Mac Only):Yes・Display Status Panel at Startup (Window...

question on ms-one drive option

Hi,I am looking into blocking online storage from our network, all except One drive. Under objects->Applications->Category-> general-internetsub category file-sharingI see ms-one drive has several optionsbase, downloading, share and uploading.what does the base option?can we selectively allow/block each event?

routing forwarding

hey guys If there is a site-to-site VPN between the FWs and I want to force some specific internet access traffic to go through this VPN, is it possible? Can I just add static routing on FW to force the specified traffic to the VPN tunnel?Do we need some config for the traffic which coming back? Thanks

qd_056 by L2 Linker
  • 4328 Views
  • 3 replies
  • 0 Likes

Monitor->App Scope->Summary how to interpret "Top 5 Gainers (last 60 minutes vs yesterday)"

In Monitor->App Scope->Summary how should the report entitled Top 5 Gainers (last 60 minutes vs yesterday) be interpreted. Is iteg.1) last 60 minutes compared with same 60 minutes from yesterday2) last 60 minutes cpared with hourly average from yesterday3) ..... I am not able to find much info on this anywhere. Appreciate any feedback. Reg...

Test Cases

Hello we are planning to migrate from PAN OS 7.1 to 8.1. Is there a document or a list of tests that we can do to check if the migration was successful ? I mean we can obviously test if some critical servers are reachable but still any template would help here. Thanks and Regards,RJ

Resolved! CLI access to PA

@reaper, @BPry @Mick_Ball What could cause a superuser to not be able to ssh to the CLI of the PA?

jdprovine by L4 Transporter
  • 12068 Views
  • 31 replies
  • 0 Likes
  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks