General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 2863 Views
  • 2 replies
  • 14 Likes

Issues with custom log format in Panomara 8.0

Hello Community,

I have a doubt about syslog server profile in 8.0.

This is the scenario.

One panorama cluster running like a panorama and collector. All firewalls send your logs to panorama and panorama send to our syslog server.

When the syslog profile

...

Apadilla by L3 Networker
  • 1326 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect with MFA/Dual Authentication

I've been looking up and down and can't seem to find a solution. I'm trying to authenticate to the GlobalProtect gateway or portal via Radius (which is tied back to AD) then to DUO for MFA. 


The user should point to the portal/gateway, receive a usern

...

How to Block specific HTTPS Sites?

Hello,

 

I'm struggling to block some internal https sites.

 

I have to block various sites/urls of a server from a specific zone, while I have to keep some others open 

The urls look like:

https://servername.suff.dom:8443/aaa/bbb/ccc/ddd/eeeee_ff_applicat

...

PhLang by L1 Bithead
  • 2148 Views
  • 5 replies
  • 0 Likes

Replacing PA500 with PA220

Currently have a PA500 (in virtual wire mode). Ordered a replacement PA220. I followed the instructions on connecting to the new unit and assigning a new IP address. It too is in Virtual wire mode. I need to understand how to transfer my configuratio

...

jharlow by L3 Networker
  • 2745 Views
  • 3 replies
  • 0 Likes

Authentication Tab Error

 

Hi 

 

After upgrading to 8.1 version, I can not see the Authentication and User-ID tabs

this happens only with my user

 

authentication tab

Screenshot_1.png
Frazão by L1 Bithead
  • 1496 Views
  • 1 replies
  • 0 Likes

GP 4.1 msiexec syntaxes broken...?

So,

 

While testing GP 4.1 I came accross the following issue:

 

As per the admin guide for GP msi deployment, you can deploy the client using the following syntaxes:

 

msiexec.exe /i GlobalProtect.msi /quiet PORTAL=”portal.acme.com”

 

When doing this on the

...

Managed devices list export

I thought this would be something easy to look up and preform but I am obviously to optimistic.  What I would like to do is export a CSV or txt file with all the managed devices out of Panorama with thier device name, model, OS Version #, HA status,

...

vseward by L1 Bithead
  • 2984 Views
  • 4 replies
  • 1 Likes

Resolved! Disable User-ID Syslog messages

I get litterally millions of the syslog messages below (different users), and I think that they have to do with the user-id agent or user identification in someway.  Currently I am logging absolutely everything to a syslog server that pumps it all ov

...

DIRTT by L2 Linker
  • 2282 Views
  • 2 replies
  • 0 Likes

ssl err_cert_authority_invalid

Hello 

 

I have added our selfsign SSL that we generated from a windows CA server for our district. When I add it to the firewall under the Device Cert and use it for the forward trust I am getting this error 

 

ssl err_cert_authority_invalid

 

I am not su

...

Resolved! Power Module failure

Is there any other way to see if a power modules as failed? I just happened to notice the LED lights were red on the front of the secondary PA but my primary PA is in another building altogether so I would not know without going over there.

jdprovine by L4 Transporter
  • 3634 Views
  • 13 replies
  • 0 Likes

Qos Policies for G-rollout.

For G-site rollout effort,is there a way to write Qos policies so they apply per client IP flow when they are communicating to google IP address?    A way to give rate limiting per client IP(thousands of clients) for google destination IP?     The ke

...

kpotru by L1 Bithead
  • 2259 Views
  • 4 replies
  • 0 Likes
  • 24008 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors