General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Global Protect portal -- Multiple Client Authen

I have configured GP portal under client Authen I have configured two one is Radius and other is test -- local database Radius is at top and below it is test using local database. When i use the local database account authen does not work. To make authen work via local database i have to move it up. Does GP portal supports more than two c...

MP18 by Cyber Elite
  • 3134 Views
  • 3 replies
  • 0 Likes

Resolved! Qos on Citrix Connection from Internet users

we need to apply qos on citrix users coming from the internet.should i apply qos on lan egress? which application i should use for citrix?OR should i apply qos on public ip of citrix ?

MP18 by Cyber Elite
  • 3638 Views
  • 3 replies
  • 0 Likes

How to configure a miner to pull from a generic API

Is there currently a prototype miner that can be configured and used to pull from a generic API? My example is Infoblox, but I can see this working with multiple infrastructure tools. I'm working with both AutoFocus-hosted Minemeld, and the stand-alone VM. Thanks! -Chris

Resolved! GlobalProtect portal user authentication failed

we have global protect portal configured and both portal and gateway have same ip assinged.we have configured RADIUS for auth. Also under Auth profile we have Radius as a profile name When client connects he gets message GlobalProtect portal user authentication failed. Login from: Reason: Authentication failed: Invalid username or password, Auth...

MP18 by Cyber Elite
  • 88273 Views
  • 3 replies
  • 0 Likes

Resolved! Office 365 returning 0 indicators

I just noticed my Office 365 indicators are reporting zero for all Office 365. I originally installed 0.9.46 and it had been working great for a few months. After I noticed this I figured it had something to do with MS change from xml to json. My Palo Alto firewalls point to October 11th as the last time they saw a valid EDL. I upgraded Mine...

Resolved! Commit not working in passive firewall

When I commit the firewall in active firewall I can able to commit. When I commit in passive firewall it shows "Error: config push error" However I don't need to push the configuration in passive firewall I'm doing this as my HA sync is having issue. Please let me know your comments

image.png

Resolved! Palo Alto - Dynamic Updates

Hi ! I'm new to the Palo Alto Firewalls. I have query about the content updates for the PA Devices has TP licenses. We are pushing updates through Panorama. Q1: I can install only one Active AV or threat updates to the firewall . Since this the new deployement , if i install with latest update is enough for us or we need to install all the upda...

gpsriram by L1 Bithead
  • 2401 Views
  • 1 replies
  • 0 Likes

Resolved! Captive Portal and MFA

I have configured captive portal with MFA.Primary auth method is radius and secondary is duo-security. Under network Global Protect Portal config is done Do I need any config under gateway??????? My understanding is that we need gateway config only when we use the VPN?

MP18 by Cyber Elite
  • 2510 Views
  • 1 replies
  • 0 Likes

Resolved! Purpose of Authen Profile under Global Protect Gateway

We have configured MFA using CP and using RSA as Second authen. Under Network Portal Authen--------------Radius Gateway Authen ----------------Radius Under Device CP - Authen ---------RSA Why we need Authen profile under Gateway??????????should Authen profile under Portal and Gateway have to be same????? Why we u...

MP18 by Cyber Elite
  • 2937 Views
  • 3 replies
  • 0 Likes

show counter global filter delta yes -----drops

when i run command show counter global filter delta yes i see below counters incrementing need to understand which are these drops and why PA is dropping these packets?do they impact the performance of the PA? flow_tcp_non_syn_drop flow_fpga_egress_exception_err flow_fwd_l3_ttl_zero flow_action_close

MP18 by Cyber Elite
  • 7575 Views
  • 2 replies
  • 0 Likes

Resolved! logical int counters - packets dropped

Logical interface counters read from CPU:--------------------------------------------------------------------------------bytes received 21513660bytes transmitted 2835packets received 358561packets transmitted 21receive errors 0packets dropped 358539 is oit normal to have packets dropped?

MP18 by Cyber Elite
  • 5596 Views
  • 4 replies
  • 0 Likes

Palo alto HTTPS decryption?

Hi all, I am using PA-850. I configure to decrypt HTTPS, and use AD group policy to install certificates on client, it works well with AD users. but we have other situation that client is not AD users. do we have any ways to redirect client to the URL if client is not trusted certificates with firewall? then they must install the certificate if ...

Chivas by L2 Linker
  • 6038 Views
  • 6 replies
  • 0 Likes
  • 24401 Posts
  • 123 Subscriptions
Top Solution Authors
Labels