General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Panorama support license upgrade

Hello,

I am just trying to upgrade support license of Panorama VM from 100 devices to 1000 applying the Auth code received for PAN-SVC-BKLN-PRA-1K. It is failing with message "Failed to install licenses. An initial license cannot be applied for renewa

...

QoS on inter-vsys traffic

We have internet traffic and tunnels terminating on vsys1. While our servers are in vsys2. Traffic to internet or tunnels is passed through inter-vsys routing from vsys2.

 

Server X which earlier used to be in vsys1 and had qos applied for it tunnel tr

...

raji_toor by L4 Transporter
  • 1452 Views
  • 1 replies
  • 0 Likes

Inbound SSL Decryption

Hi,

 

I have two questions for folks

 

1) I have setup Inbound SSL decryption as outlined in the documentation  (Import Server Certificate, Create Decryption Policy, Create Decryption Profile), and expected that when I looked at my traffic log to the ser

...

Resolved! LDAP groups not populating correctly

PA220, PANOS 8.1.1

Working on setting up GlobalProtect using AD/LDAP auth and groups to define access. 
I have userconfigs setup by AD Group and the log is "matching config not found" 
On digging into it some more, it appears that the user, in the PA, d

...

Nathan.S by L3 Networker
  • 11504 Views
  • 21 replies
  • 0 Likes

Resolved! PAN System Based Reports

Hi,

 

I have question about some system reports requests. Can PAN firewalls provide config reports belonging to changes which users made? Also Can I get system resources report by historical?

 

Thanks

Who vets External Dynamic Lists (EDLs)

The Knowledge article on blocking TOR, https://live.paloaltonetworks.com/t5/Featured-Articles/How-to-Block-Tor-The-Onion-Router/ta-p/177648, references a list on panwdbl.appspot.com. This website has a number of lists that can be used to filter traff

...

Autofocus Minemeld Advantage vs wildfire?

My understanding is that wildfire autoupdates some URL categories within 5 minutes if you have the correct licensing.  With a current wildfire/URL filtering subscription, and without traps on our network, what is the real advantage to autofocus? My u

...

Sec101 by L4 Transporter
  • 2671 Views
  • 5 replies
  • 0 Likes

RSA AM and PA Configurations

Want to know if anyone has configured a PA to use the RSA Authentication Manager yet?  I have seen an RSA document from 2010 that states it can be done.

Resolved! Inter VLAN routing - best practices/suggestions

Hi guys, I've got about 7 or 8 VLANs that segregate my various departments. I want to inspect the traffic that goes from these VLANs to my server VLAN. What's the best way to do that? The only article I could find suggests creating a zone for each de

...

Current Interface Config.JPG
Konos44 by L1 Bithead
  • 7924 Views
  • 5 replies
  • 0 Likes

Captive Portal - Terms of Service

I would like to configure my PA-200 in such a way that when the user tries to browse a web site, he is presented with the captive portal. On this page I would like to display a "Terms of Service" banner telling him about acceptable use etc. I do NOT

...

u13001 by Not applicable
  • 14874 Views
  • 36 replies
  • 2 Likes

Captive Portal NTLM and responce page

Hello

 

Today I configured for one of my zone insted of default-web-form default-browser-challenge.

When I try to open new session on computer that isnt a Windwos AD machine i got:

and when I clicked Cancel:

 

I'm pretty sure that above message is possible

...

2018-06-20_203000.jpg
2018-06-20_203012.jpg
_slv_ by L4 Transporter
  • 3152 Views
  • 2 replies
  • 0 Likes

limitation when monitoring uptime with snmp

Hello Community.

 

I have an inquiry with which maybe you can help me. This is the situation:

 

In order to know the uptime I´m using the OID 1.3.6.1.2.1.25.1.1.0 to get the value of object hrSystemUptime. This is a counter of 32 bits and considering it´

...

Carracido by L3 Networker
  • 3520 Views
  • 4 replies
  • 0 Likes
  • 23541 Posts
  • 104 Subscriptions
Top Liked Authors
Labels