This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4128 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect restrict to approved devices

Hello, I am trying to restrict what devices users can log in to GlobalProtect with to only machines that we have given them. Since all of those machines would be domain-joined, I would expect that I can import an AD group that contains those machines and use that as a restriction, but all I can find is how to use an AD group for allowed users (...

PA SSL-decrypt pcaps

Hi, I would like to know by security / audit issues if the captures that are made automatically when detecting a threat on encrypted traffic are stored encrypted or decrypted. So, PA is storing pcaps when enable ssl-decrypt about this traffic?

BigPalo by L4 Transporter
  • 2352 Views
  • 2 replies
  • 0 Likes

Resolved! Vulnerability Protection Signatures

Is there a PA best practice regarding how to handle Vulnerability Protection signatures with severity ratings of high in custom profiles? Should rule actions be Drop, Reset-Both etc

Resolved! LSVPN Loopback

Hi Folks, I'm currently trying to setup LSVPN between our various sites (with the help of the PaloAlto guide and YouTube video!) but was wondering if we could use a Loopback interface instead of a physical Layer 3 Interface? We currently use this with our standard GlobalProtect VPN (which works perfectly fine!) and I would imagine this is much t...

Damiel by L0 Member
  • 4111 Views
  • 2 replies
  • 0 Likes

Resolved! service versus using an application for Rule match

Need to know if we use application instead of service in security policy When we use service then that will enable the firewall to take immediate action with the first observed packet based on port number. When we use "application" in Rule that will allow the firewall to take action after enough packets are allowed for App-ID identification ...

MP18 by Cyber Elite
  • 4791 Views
  • 5 replies
  • 0 Likes

Hardware upgrade process?

Greetings all, My organization is looking to upgrade from an Active/Active 5060 deployment to an Active/Standby 5200 series deployment. I have Expedition installed although I'm not perficient at it yet (side note: If anyone knows of and can pass along any tutorials on using it to capture data and create migration rulesets to move ip/port rules ...

jsalmans by L4 Transporter
  • 3736 Views
  • 3 replies
  • 0 Likes

PA3220 HA Trigger Condition

I have a pair of PA3220 firewalls in my environment. I configured Active/Passive for High Availability and I configured Link Monitoring condition to trigger the failover. However I'm still not clearly understand the behavior of PA HA. I configured a Link Monitoring Group on both Firewall as below- Name INSIDE - Condition ANY + Interfa...

HA.png
Putmano by L0 Member
  • 2854 Views
  • 3 replies
  • 0 Likes

LAB PA-200 fails 7.0.1 upgrade

I have a Lab PA-200 that I have been upgrading to the latest version of PAN OS for testing.I have been uploading the OS file and upgrading for a while.The 7.0 file worked fine. After the alert about 7.0. I attempted to upgrade to 7.0.1.No joy. In Firefox and Chrome the upload dialog just sits there forever.With IE 11 it finally gives the error: ...

markwoll by L1 Bithead
  • 13893 Views
  • 21 replies
  • 0 Likes

Password Spraying Protection

Hi!In my company we are using GlobalProtect VPN's as a medium to access the network. Right now we have a blocking procedure by which if a user fails 5 times the password while trying to login, his account gets blocked for 15 minutes.We are using this -> https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClJ2CAK Recently...

arnauec by L1 Bithead
  • 7266 Views
  • 5 replies
  • 0 Likes

MineMeld on CentOS 7.5 (HOSTED on AWS)

Hi to everyone. I'm new here and I have a issue as follow: Installed MineMeld on centos 7 in my lab environment and everything goes smoothy. Now I'm trying to deploy on AWS server with same OS but I got the erro executing ansible-playbook. TASK [minemeld : minemeld-webui repo] *********************************************************************...

Fumaca14 by L0 Member
  • 2220 Views
  • 1 replies
  • 1 Likes
  • 24336 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks