General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 420 Views
  • 0 replies
  • 2 Likes

Resolved! Subinterfaces and Policy based routing

Hi, so I've configured a new L3 subinterface on an existing L3 interface, both with IP addresses and I thought it was going to work. I've got a PBR rule in place on the previous hop, a HP switch, which diverts some traffic to this new subinterface. I

...

Library network PBR plan.jpg
2018-02-27_161058.jpg

GlobalProtect Certificate auth debug

could anyone please advise a good way via cli to debug certificate authentication.

 

I have followed most of the log files but cannot find one related to GP authentication.

 

many thanks in advance...

Mick_Ball by L7 Applicator
  • 1914 Views
  • 1 replies
  • 0 Likes

API - list just device groups in panorama

Hi All,

 

Does anyone has any idea on how to list just the name of device groups in panorama using the api

 

if i do the following path:

 

https://mypanorama/api/?type=config&action=get&key=<my key>/config/devices/entry[@name='localhost.localdomain']/devic

...

Harshit by L3 Networker
  • 2683 Views
  • 1 replies
  • 0 Likes

Resolved! How does the PFS Inbound Inspection work?

Hello Team,

 

I am wondering how exactly the Inbound Inspection with PFS works?

 

Diffie-Hellman per definition has the functionality that a key agreement is happening without transfering the key through the "unsecure" channel. All passively listening in

...

tisc by L1 Bithead
  • 3216 Views
  • 1 replies
  • 1 Likes

Impossible? List unused Addres Objects?

I assume there is no report to list address objects that have not been used

 

Ones that may or may not be in rules, relate to long dead or incorrectly entered endpoints, that have not generated any traffic.

 

I have seen the "Shared_dup_and_unused... scr

...

Policy Rules for BFD, OSPF , DHCP and DHCP relay

Hi

 

So do I have to setup policy rules to allow OSPF, I have OSPF on the PA . But when i don't have the rules in place OSPF fails, when i have them it doesn't log anything 

 

DHCP, do I need it if the PA is running DHCP. what is the source and destinati

...

Rules with schedules failing intermittantly

I recently upgraded to OS 7.1.15 on my PA 5050, I have two rules with schedules on them and have had for over a year.  In the traffic logs it was showing the traffic going back and forth between denying and allowing the traffic.  When I removed the s

...

jdprovine by L4 Transporter
  • 3494 Views
  • 10 replies
  • 0 Likes

Captive portal - how to logout?

Hello

 

I need to do changes to my  CP settings. Now I have CP in redirect mode and everything is OK.

 

I have task to setup few computers in library that will allow our students use internet - but after logon. This part is easy ... but students need it

...

_slv_ by L4 Transporter
  • 4406 Views
  • 1 replies
  • 0 Likes

multiple user-ip-mapping sources

I recently configured windows user-id agent and have it in conjunction with agentless user-id. 

Can I have both running on the firewall as a redundancy?or should I remove agentless config?will it create any harm if I keep both running?

  • 23695 Posts
  • 110 Subscriptions
Top Solution Authors
Labels