General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 243 Views
  • 0 replies
  • 0 Likes

multiple user-ip-mapping sources

I recently configured windows user-id agent and have it in conjunction with agentless user-id. 

Can I have both running on the firewall as a redundancy?or should I remove agentless config?will it create any harm if I keep both running?

Resolved! User activity report Query

Hello,

 

I go to ACC tab -->Onleft side select the time frame --> Network Activity -->User Activity --> Export to PDF

 

1) User activity report when it is pulled it shows Source User and destination User. What is that destination user means?
 
2)Under Dest
...

Farzana by L4 Transporter
  • 1991 Views
  • 1 replies
  • 0 Likes

Check GlobalProtect VPN users with PowerShell GUI

I wrote a simple PowerShell GUI script that can check for GlobalProtectVPN users connected currently, or at a past date.

It uses the Rest API to grab the information. Not sure if anyone would find it useful.

Here is the Github link: https://github.com/

...

paltoshell
molander by L2 Linker
  • 11557 Views
  • 15 replies
  • 2 Likes

Resolved! Wildfire Activity?

Hi folks,

 

We have a Wildfire public cloud subscription, dynamic updates, and security profile configured.

I've been asked, "How do we know it's doing anything?".

 

When I look at Wildfire submissions, the last submissions are from January and end of las

...

wildfire2.jpg
wildfire1.jpg
OMatlock by L4 Transporter
  • 2549 Views
  • 4 replies
  • 0 Likes

DAGPusher new setup

Hello,

 

I finished the setup of DAGPusher and DAG in Panorama.

The list of indicators is populated in the MineMeld DAGPusher but my DAG in Panorama is not populated.

In the MineMeld logs I can see following:

2018-02-23T14:18:23 (17217)dag._device_pu

...

pverar by L1 Bithead
  • 9364 Views
  • 10 replies
  • 0 Likes

Resolved! Custom URL matching on wrong URLs

Hi,

 

I have a security rule that's supposed to be only allowing traffic for URLs in a custom URL category.  However, it appears that it's matching lots of other URLs that aren't in the category.  Below are some screenshots.  I'm running v8.0.6.  Let m

...

mprintz by L2 Linker
  • 8509 Views
  • 13 replies
  • 0 Likes

Resolved! Verify SSL and SSH Inspection

Hello everybody.

I am using the SSL Inspection over HTTP (HTTPS) service on our office GWs. I know how to set up rule bases and configure my Decryption Profile well. I have read PAN's documentations and watched a tutorial about how to configure a SSL

...

Resolved! URL database schedule

I was going to check the update schedule of URL database but this is no longer there. Although i can see update has happened today. License is still valid. PANOS is 8.7.

 

url-filtering-version: 20180228.20221

raji_toor by L4 Transporter
  • 4576 Views
  • 1 replies
  • 0 Likes

GP user logouts.

trying to find out if there's a list of the various messages and what they mean, particulary with 'globalprotectgateway-logout-succ'. I'm specifically trying to identify what 'Reason: remove previous login' means.

 

I assume it means the previous sessi

...

Resolved! How to translate IP and port from trust to trust?

My goal is to be able to reroute traffic from internal server 192.168.0.10 port 123 to other internal server 192.168.0.20 port 456

 

My understanding is that I do not need a u-turn nat rule since we're using internal IP addresses, however so far I've n

...

  • 23626 Posts
  • 107 Subscriptions
Labels