General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 241 Views
  • 0 replies
  • 0 Likes

Resolved! How to block Geo IPs for some services?

Hi,

i have a ssh Service connected via the internet.

But i would like to filter a bit, because there comes often automatical scans from china IPs and so on.

The devices who connect to the port 22 have a dynamic ip so i cant set a static source.

But i kno

...

Resolved! Recover from Split Brain PAN OS 8.0.6 (PA3020)

Hi Community,

 

i have two PA3020 in an A/P HA deployment.

The cluster is virtualized with 2 VSYS - one for comany A and one for company B.

Between the companies, the coreswitches are linked with 20GBit. (a kind of dark fibre - 500 meters)

 

The 3020 HA se

...

Resolved! Global Protect VPN Unique ID's and one user allowed

Hello all,

 

I have a requirement for the following and short of any draconian methods, I'm hoping that the PA GP will be able to answer.  

These are PAN8.0.7 on 5520's in Active/Passive

 

I have a req to ensure that a user of GP is only allowed one GP se

...

Intrazone default- what gets inspected?

Hi

 

For traffic that matches the intrazone default policy,  and assuming there are no security profiles for anti-virus, anti-malware, threat protection. etc,  Is there any inspection performed? 

 

Reason I ask- I found an article on the Knowledge base a

...

fmurray by L1 Bithead
  • 2312 Views
  • 2 replies
  • 0 Likes

Resolved! User-ID Agent Ignore a group of users

Hello together,

 

Is it possible to ignore a group of users with the User-ID Agent, and also on the firewall without the agent?

 

I tryed to add a group ( example\Ignore User-ID ) to the ignore_user_list.txt for the Agent. But it seemed not to work.

 

I al

...

Clermont by L2 Linker
  • 7034 Views
  • 14 replies
  • 0 Likes

VNC Access through Global protect

Hi all

We have internal server that must be accessed through VNC and HTTP.

Internally it works well but when we try to connect from outside through Global Protect it is blocked

Access  Policies  from GP to Internal allowed. But  not  working. 

Radmin_85 by L4 Transporter
  • 6602 Views
  • 11 replies
  • 0 Likes

SNMP monitoring for Ethernet interfaces

Hello,

 

 

We are using OPManager to monitor our internal network and we are experiencing some issues with PA-VM 200 when trying to get the traffic of certain interfaces. For all the tunnel interfaces and sub-interfaces, we can see the traffic on the mo

...

Farzana by L4 Transporter
  • 5711 Views
  • 7 replies
  • 0 Likes

SSL Offloading for inbound connection

We have few legacy internal applications listening on a various TCP ports. Now we have a requirement to connect to these applications from a cloud vendor externally. There is no option to setup a site-to-site IPSec VPN tunnel to the cloud so we need

...

ganees by L1 Bithead
  • 7670 Views
  • 4 replies
  • 0 Likes

Resolved! CPU/RAM/Memory Alarms in PAN-OS

Is there a feature in PAN-OS to set CPU/RAM/Memory usage exceeding threshold x% in the same way Device>LogSettings>AlarmSettings has variables to track Log DBs?

 

This could be useful towards spinning up a new instance for the vFW to load balance to if

...

timgowan by L0 Member
  • 5052 Views
  • 1 replies
  • 0 Likes

O365 Category Change

Did anyone see outlook.office365.com change category today at about 18:00 GMT?

 

We were seeing logged as computer-and-internet-info and changed to web-based-email?

 

This is when I find out it ws planned and I've missed about a million alerts telling me

...

apackard by L4 Transporter
  • 3025 Views
  • 4 replies
  • 0 Likes

How to block Spotify in Palo Alto

Hello world !

 

despite spotify being an awesome P2P solution for music, it has been a headache to HR management.

So, we were asked to identify an way to block the usage of Spotify in our machines.

What´s the way we should use in order to get it done in

...

evsivier by L0 Member
  • 4738 Views
  • 2 replies
  • 0 Likes
  • 23624 Posts
  • 107 Subscriptions
Labels