General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Resolved! nested device group

i am trying to understand below from admin guide Without a hierarchy, you would have to configure both function- and location-specific settings for every device group in a single level under Shared. if anyone can explain me in more detail that will be much appreciated

MP18 by Cyber Elite
  • 3248 Views
  • 2 replies
  • 0 Likes

Resolved! Admin password problem on CLI and Web Interface after panorama upgrade

Hello everybody, I upgraded my panorama m100-series to 8.0.13 and since this upgrade, I cannot login in my panorama through CLI and Web interface with the default admin account (Password was changed of course). When I try to log myself, it says that I entered a wrong user/password. So I created a Radius account and I can log with this account on...

Resolved! GlobalProtect App deployment with gateway already configured

Hello,I'm at a confusion regarding if it's possible for GP users to download the App with the gateways already configured for connecting so that they don't have to enter the gateway after it's installed. My use case is easier deployment for single-gateway scenarios with/without GPO. Or better said, i don't want to document the gateway for users...

Resolved! log forwarding to m500 and SIEM

we have panorama in active and passive and all firewalls are connected to it.We have m500 log collector and when i run below command sh logging status i see the firewall is sending logs to m500 also we have configured logs to be send to SIEM. 1>Need to know if SIEM logs are directly send from firewall to SIEM?how can i verify that? 2>Nee...

MP18 by Cyber Elite
  • 7361 Views
  • 8 replies
  • 0 Likes

Linux GlobalProtect Client sends bad passcode format to RSA SecureID Radius

Hello, We've been using GlobalProtect on Windows and Mac for a long time now in conjunction with our RSA SecureID MFA appliances. We've recently started trialling the GlobalProtect client on Linux, however no users are able to authenticate against the RSA SecureID appliance via the Linux client due to a "Passcode format error". I have tried mul...

1.jpg
Farzana by L4 Transporter
  • 3735 Views
  • 2 replies
  • 0 Likes

Resolved! GlobalProtect restrict to approved devices

Hello, I am trying to restrict what devices users can log in to GlobalProtect with to only machines that we have given them. Since all of those machines would be domain-joined, I would expect that I can import an AD group that contains those machines and use that as a restriction, but all I can find is how to use an AD group for allowed users (...

PA SSL-decrypt pcaps

Hi, I would like to know by security / audit issues if the captures that are made automatically when detecting a threat on encrypted traffic are stored encrypted or decrypted. So, PA is storing pcaps when enable ssl-decrypt about this traffic?

BigPalo by L4 Transporter
  • 2416 Views
  • 2 replies
  • 0 Likes

Resolved! Vulnerability Protection Signatures

Is there a PA best practice regarding how to handle Vulnerability Protection signatures with severity ratings of high in custom profiles? Should rule actions be Drop, Reset-Both etc

Resolved! LSVPN Loopback

Hi Folks, I'm currently trying to setup LSVPN between our various sites (with the help of the PaloAlto guide and YouTube video!) but was wondering if we could use a Loopback interface instead of a physical Layer 3 Interface? We currently use this with our standard GlobalProtect VPN (which works perfectly fine!) and I would imagine this is much t...

Damiel by L0 Member
  • 4230 Views
  • 2 replies
  • 0 Likes

Resolved! service versus using an application for Rule match

Need to know if we use application instead of service in security policy When we use service then that will enable the firewall to take immediate action with the first observed packet based on port number. When we use "application" in Rule that will allow the firewall to take action after enough packets are allowed for App-ID identification ...

MP18 by Cyber Elite
  • 4984 Views
  • 5 replies
  • 0 Likes
  • 24397 Posts
  • 123 Subscriptions
Top Solution Authors
Labels