This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4246 Views
  • 0 replies
  • 0 Likes

Native VPN client

The native client on my windows machine does not seem to be authenticating against my radius/otp/ldap server and my globalprotect client is getting through the portal but failing on the gateway. Any ideas why or how to track it down?

jdprovine by L4 Transporter
  • 9492 Views
  • 29 replies
  • 0 Likes

Resolved! SFTP sometimes just hitting SSH app and sometimes Enhanced File Transfer

I have an egress rule that permits port 22 which should include sftp. And for the most part it works. But I had a user go to a particular sftp site useing filezillaand the PAN 5060 identified the traffic as "Enhanced File Transfer" and the traffic didn't hit the egress rule and was blocked. Why would filezilla/winscpwork fine - seen as plain ssh...

heartbeat connection

What is the best way to set up a heartbeat connection between and active and passive pair of firewall. We currently have a PA 5050 pair, in different buidling quite a distance away from one another and the heartbeat connection is through the network via ethernet and a switch. We have had it go into a split brain situation when power is lost on o...

jdprovine by L4 Transporter
  • 6431 Views
  • 12 replies
  • 0 Likes

GlobalProtect for User-Id Without Auth?

Hi All! We're an all-Mac shop, but we use AD for authentication (for now). GlobalProtect "External" is working great for external access, with authentication to AD. Now we'd like to map IP to Users INSIDE our LAN. My primary goal is to link URL Filtering alerts and other threat analysis to a specific user.Perhaps a naive question - When talk...

Palo Alto Layer2 mode and brdige vlan in different subnets

Hi All Can Palo Alto bridge two VLAN like VLAN 10 and VLAN 30 that have different subnets? or both VLAN should have same subnet? Basically what I want, I have VLAN 10 having subnet 10.10.10.0/24 and VLAN 30 having subnet 192.168.1.0/24. Both VLAN have gateway on core switch. How can I use Palo Alto firewall in layer 2 mode to do the firewalling ...

Is it possible by PA

We have a task where users should access to Internet by username and Password.I guess it is PROXY concept but is there any alternative in PA?

Screenshot_4.png
Radmin_85 by L4 Transporter
  • 2258 Views
  • 2 replies
  • 0 Likes

Generating custom reports from system logs

Hi! I need to generate weekly reports from the system logs. We need this for compliance reasons, and we have to filter out events that are logged to the Panorama system log from several firewalls. The custom reports only allow me to choose from specific databases, but not from any of the log sources, is there any way to get this done? Thanks in ...

Prevent admin from acquiring commit lock when another admin has lock

When Automatically Acquire Commit Lock is enabled on Panorama 8.0.10, is there a way to prevent an admin from creating another lock while a different admin already has one? We use shared objects almost exclusively and with four administrators are often in situations where multiple locks are getting created. This leads to reaching out to the othe...

fwmike by L2 Linker
  • 4307 Views
  • 4 replies
  • 0 Likes

Case severity

I put a case in to tac rated high and they put it on hold for 2 days so they could attend training 😮

jdprovine by L4 Transporter
  • 5951 Views
  • 10 replies
  • 0 Likes

MineMeld: What is the difference of Share Level and stdlib name with/without value

Dear All Brothers, I'm a new user to testing the MineMeld, but I cannot find any document to know the detail information. In our environment testing, we would like to implement the Feed List to deny the traffic to a high-risk IP address and our testing, and we find below information is difficult to know the difference. Case: 1. stdlib.feedHC...

Cisco ISE Miner

I noticed that a new Cisco ISE miner has been released with the latest Minemeld 0.9.28. Can someone give a little bit explanation how does this miner works ? is this miner pulling SGTs from Cisco ISE ? if yes, then what does it do with the tags ? Thanks

PBF with Dual ISP. Once Enabled GlobalProtect Clients no longer can connect.

We have setup a PBF to route traffic to a new ISP link we have in case our primary fails. Both ISP interfaces are in one virtual router. Once we change the default route to the Backup ISP and enable the PBF to forward all traffic to the Primary unless it fails, users can no longer connect to our GlobalProtect portal with the GlobalProtect clie...

blohrer by L0 Member
  • 5043 Views
  • 3 replies
  • 0 Likes

Resolved! Anomali Limo Miner Creation

Hello, First, I am not a programmer, so please keep that in mind 😉 I would like to create a miner for the Anomali Limo TAXII feed. The Anomali documentation is not very good: You can also get the benefits of Limo without STAXX. Simply: ​ Configure your TAXII client to point to: https://limo.anomali.com/api/v1/taxii/taxii-discovery-service/ ...

Capture.PNG
  • 24359 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks