General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Guest Access via Captive Portal - problem with page not always appearing

I have set up a guest wifi network with an access point on an ethernet port of the PAN firewall. The guest wifi network is unsecured. I am using a web-form to ensure the guests see our logo, terms, and type in the correct password to proceed.The setup works most of the time. On occasion when using this setup via an Apple iOS device (iPhone, i...

cenders by L3 Networker
  • 22183 Views
  • 17 replies
  • 0 Likes

Captive Portal - Terms of Service

I would like to configure my PA-200 in such a way that when the user tries to browse a web site, he is presented with the captive portal. On this page I would like to display a "Terms of Service" banner telling him about acceptable use etc. I do NOT wish to authenticate individual users.A simpe banner and an I Accept/Cancel button would suffice....

u13001 by Not applicable
  • 23678 Views
  • 36 replies
  • 2 Likes

Captive Portal NTLM and responce page

Hello Today I configured for one of my zone insted of default-web-form default-browser-challenge.When I try to open new session on computer that isnt a Windwos AD machine i got:and when I clicked Cancel: I'm pretty sure that above message is possible to translate/personalse. Unfortunetelly in Responce Pages I can't find that option. Is is possib...

2018-06-20_203000.jpg
2018-06-20_203012.jpg
_slv_ by L4 Transporter
  • 3990 Views
  • 2 replies
  • 0 Likes

limitation when monitoring uptime with snmp

Hello Community. I have an inquiry with which maybe you can help me. This is the situation: In order to know the uptime I´m using the OID 1.3.6.1.2.1.25.1.1.0 to get the value of object hrSystemUptime. This is a counter of 32 bits and considering it´s counting in hundreds of seconds, the maximum uptime without overflow is: 2^32 = 4294967296 (hun...

Carracido by L4 Transporter
  • 5452 Views
  • 4 replies
  • 0 Likes

panMgmtPanorama2Connected custom poller = Not-Connected

can someone tell me how can we troubleshoot palo alto firewall disconnection from Panorama. I tried to check system logs but there are no enough logs to troubleshoot it. logsFW has lost connection to panorama, no log will be forwardedDisconnected from Panorama Server: X.X.X.X. , source: Y.Y.Y.YUser-ID server monitor <hostname>(vsys1): con...

SSL Forward Proxy Decryption with ECDSA Cert?

Just wondering if it's possible to use an Elliptical Curve DSA cert with CA and Trusted Root to be the Forward Trust Certificate for the SSL Forward Proxy decryption feature? Reading about the Perfect Forward Secrecy feature here:https://www.paloaltonetworks.com/documentation/71/pan-os/newfeaturesguide/decryption-features/perfect-forward-secrec...

jsalmans by L4 Transporter
  • 4942 Views
  • 2 replies
  • 0 Likes

user-ID user mapping problems

Our PA 4.1 has problems mapping entries received from user-ID agent and LDAP queries.show user ip-user-mapping command produces following output:192.168.1.1 AD grybai\vltr12345678 Here grybai is our NetBIOS domain name for domain and vltr12345678 is sAMAccountName attribute of user object in LDAP.However command show user user-IDs (which...

SimasK by Not applicable
  • 3952 Views
  • 3 replies
  • 0 Likes

Resolved! Please suggest about mac-address control

Hi expert , I would like to know about suggest mac-control because my customer use Fortinet which use device control and I will replace and migrate to Palo-alto if that possible about control this thing . Thank you

Block "internet-communications-and-telephony" but allow Skype4Business connections

Hi community Has anyone of you already had to deal with a request to generally block the URL category "internet communications and telephony" but at the same time allow connections to Skype for Business services of other companies?The only way I can think of about this is to manually maintain an exclusion list ... Thanks for your input.Remo

Remo by L7 Applicator
  • 3912 Views
  • 1 replies
  • 0 Likes

Guide to FTPS?

One of our partners is switching it's service to FTPS, Does anyone know of a decent guide on implementing FTPS? I saw a brife article by "sdurga" but it's not very detailed. We don't presently do any SSL decryption so unsure of what we need to do and what effect it may have on other parts of the system??? Thanks Robin

  • 24393 Posts
  • 123 Subscriptions
Top Solution Authors
Labels