General Topics

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Shutdown Clustered/HA FWs

Is there any documentation on how to properly shutdown a clustered/HA FW pair and then restore connectivinty power verifying proper function once power is restored?

Dynamic TCP port APP query

Hi community, In a situation where there is a security policy allowing: SOURCE Source IP: any Source Zone: outside DESTINATION Destination IP: public IP 1.2.3.4 -> NAT'd to private IP 10.10.10.10 (servername1) (the security policy is using the post N

...

Resolved! Application Blocked instead of URL Block

Hi

I have implemented URL Filtering. However for http pages, I see Application Blocked page as agains URL Block page.

Anyone experienced same phenomenon?

BR,

RJ

Resolved! Auth Profile 8.1.x LDAP

We'd like our users to be able to log into Captive Portal or Globalprotect with user@domain.com or just user. We've messed around with seemingly every combination of username modifiers, but have not been able to get it to work both ways. Currently,

...

Resolved! Difference between system resources in GUI and CLI

Hello,

What is the difference between the System Resources in the GUI and the CLI? The CPU percentages are different.

Resolved! User ID Agent

Where the userid agent save log file ?

We want to start audit when User ID update task failed on PA

Is there a possibility to move the logs of userid to the siem / syslog server

Has anyone used google authenticator with Global Protect?

Hi,

Has anyone used google authenticator with Global Protect? Can anyone help on how this is to be configured? I have configured other RADIUS agents in the past.

Thanks

Extend VPN to Azure Cloud

Is it possible to extend Palo Alto VPN onto Azure Cloud? That way we can have users connect directly onto any Azure Cloud Region

Resolved! LACP NEGOTIATION LOG FILE

Hello,

In order to debug an issue in our LACP interfaces.

I need to run lacp debug and to find the log file of lacp negotiation.

And there is a log file of all ethernet negoatiation?

Thanks in advance.

Resolved! ISP redundancy and route load balancing.

Hi, Community!

I'm looking for some help with a customer today 

Here's the situation: a customer has a dual ISP configuration and wants the traffic both to be balanced between the routes of the two providers and that a redundancy scheme is put in p

...

PA-220 Not Decrypting any HTTPS Traffic even after I have followed ALL the Palo Alto Live Videos

For some reason SSL Decryption is not working on my PA-220 - I have followed many many many of the palo alto instructions to try to get it to work but some how it is still not working - the PA-220 is simply not decrypting any of the Https Traffic. I

...

Resolved! Replace passive member in HA (A/P)

Hi,

We need to replace the passive member in a cluster. So in the HA preempt is not enabled. And priority in the active member is 100. So i understand that we can directly connect all the cables for new devices and this new member will take passive r

...

Stuck in Failsafe Bootloader. what now?

My PA-820 is stuck in failsafe bootloader mode. what are my options now? I am no longer getting the option for MAINT mode either. If I let the system boot on it's own I get the below and it just keeps rebooting.

Welcome to the PanOS Failsafe Boo

...

Resolved! No source user in logs post 8.1.2 upgrade

At the weekend I upgraded all our boxes from 8.0.9 to 8.1.2 as we need to make use of the new GP - Split Tunnel by URL features & Enhanced UserId coolness. Yes, I know - this was brave 

Everything seems to be working as expected & as it was pre-upgr

...

Asymmetric routing with the same interface

I have to deploy the WAN firewall which have 2 WAN link. The requirement was egress traffic from the firewall to WAN will be send to Link A but the response traffic will be ingress from the Link B.

If I've set both of these interface in the same zone

...

General Topics

Discussions

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free