General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 338 Views
  • 0 replies
  • 2 Likes

How to filter routes being exported to BGP neighbor?

We are currently redistributing all OSPF routes to our BGP neighbor without any filtering.  We wish to exclude certain prefixes from BGP advertisement. I need an assistance in configuring the filter for this purpose. 

 

Q1. Is it going to be working

...

JasonKu_0-1709226190520.png
JasonKu_2-1709226301733.png
JasonKu_3-1709226491336.png
Jason.Ku by L0 Member
  • 935 Views
  • 1 replies
  • 0 Likes

Palo alto GP with azure SAML

Hi, I was reading about the integration of Palo Alto GP with Azure SAML authentication.

My globalprotect is using port 4433 to access instead of the default 443.

Hence, I'm wondering what to configure for the identifier, a reply URL, and a sign-on UR

...

Kevin-Ng by L1 Bithead
  • 703 Views
  • 1 replies
  • 0 Likes

Commit Fail Phase1 sslvpn

hey

 

i am gtting commit fail on phase1 abort, and it looks like the SSL VPN proccess how can i troubleshoot it ? 

 

show management-clients

Client PRI State Progress
-------------------------------------------------------------------------
routed 30 P1-abo

...

minow by L4 Transporter
  • 13023 Views
  • 11 replies
  • 0 Likes

Resolved! Questions about EDL

Hello,

I have a firewall rule on the Internet Firewall list this

 

Source: Palo Alto Networks - High risk IP addresses - Palo Alto Networks - Known malicious IP addresses

Destination Any

Service Any

Action: drop

 

So if an ip inside the two EDL try t

...

Resolved! Panorama warning messages for EDLs with no certificate

I have several EDLs that were intentional configured to not use a certificate profile.

 

Is there a work around to hide the Panorama warning messages stating "External Dynamic List <edl> is configured with no certificate profile. Please select a cert

...

L2 trunks between 3 Cisco switches

THis was working in vwire just fine with two vwires.
1/1 to 1/3 vwire 1
1/5 to 1/6 vwire 2

Now we want to go to Layer 2, here is the configuration. I am only adding L2 sub interfaces to the firewall. 
1st trunk:
--CISCO SW1 TRUNKED INTERFACE ALLOWING ONL

...

tshooter by L2 Linker
  • 571 Views
  • 1 replies
  • 0 Likes

Resolved! Cortex XDR Agent DownGrade

hi Community,

Is there any way to downgrade the Cortex Agent from 8.3 to 8.2 via Console and as we cannot turn off Auto Upgrade isn't autoupgrade conflict with Downgrade 

 

Yayati by L0 Member
  • 1163 Views
  • 1 replies
  • 0 Likes

Exporting URL Filter objects/groups

Is there a way (CLI or WebUI) to export the URL Filtering objects and their details?  We are looking to export the objects and their block/allow categories so we can put them in front of management.

sconley by Not applicable
  • 7106 Views
  • 3 replies
  • 0 Likes

Resolved! FW HA Version Update

Good afternoon team:
Could you support me on how is the HA version upgrade process?
First the passive fw? then the active one?

Greetings.

#paloaltoHA #update

Resolved! Newcomer Seeking Advice: Palo Alto Certification Path

Hi everyone,

I'm excited to join the Palo Alto community! My name is Abhi, and I'm eager to learn and grow my career in cybersecurity with Palo Alto Networks.

I currently hold AWS certifications and have a good foundation in networking. However, I'm

...

  • 23671 Posts
  • 108 Subscriptions
Top Liked Authors
Labels