General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 468 Views
  • 0 replies
  • 0 Likes

Resolved! autolock

It was recommended that we turn on autolock so that people would not step on each other commits so we did. We had a non admin user create a filter, it requites a commit and he has no admin rights to commit. So the firewall became locked and no one co

...

jdprovine by L4 Transporter
  • 3896 Views
  • 5 replies
  • 0 Likes

Nodes polling error

Hello somewho have an idea?

Installed Minemeld on an fresh Ubuntu 14.0.4 like the manual installation guide.

Import the Office365 configuration 

All Nodes got an SSL Error message see below

 

2017-04-19T12:45:54 (22890)basepoller.hup INFO: office365_

...

Resolved! How does URL Filtering Works

Hi Guys,

 

I have slight confusion about the working of URL filtering i.e once u define the URL Filtering Profile on any rule how does the URL or any website gets catogorised,i mean how does the PA knows that this website belongs to this category.

 

I kn

...

mahmoodm by L3 Networker
  • 5193 Views
  • 5 replies
  • 0 Likes

User activity Report

Hello all

is it possible to put timestamp in user activity report for chronology?I am checking the Including detailed browsing but i can not see in the report which user or group of users at what time went into some resource

Radmin_85 by L4 Transporter
  • 1558 Views
  • 1 replies
  • 0 Likes

Firewall working as proxy for mail server

I have customer using TMG holding public ssl certificate for mail . The mail server doesnt have ssl certifcate.

Customer wants to eliminate TMG and using palo. Can palo hold the cert to authenticate the ssl . Mail server

sits behind the palo in trust z

...

Global Protect - two portals same firewall

Hello all,

 

Here is my question. Can I configure on the same firewall one global protect profile to only authenticate users based on certificates and a separate profile to authenticate users based on their AD credentials?

 

Currently I have authenticati

...

Resolved! Global Protect with multiple portals

Is it possible to have more than 1 Global Protect portal and gateway on a single appliance?  We use tunnel all mode with a route of 0.0.0.0/0 for all of our users.  However today a vendors need access but want to use their own systems at the same tim

...

nthen by L3 Networker
  • 8067 Views
  • 4 replies
  • 2 Likes

OCSP App-ID fail

Hello,

is anyone using ocsp as single app in a rule ? It's sometimes failing to match, seen as "web-browsing" although on very easy to recognize URLs such as ocsp.comodoca.com. Quite annoying when you debug a third-party software failing to setup beca

...

Resolved! Minemeld missing new O365 web

Hi,

 

We have installed PA with Minemeld. Everything is working fine but sometimes we can not access to any function in O365 online (for example "to create a new word cocument"), so we go to PA and we see that in URL logs that PA is blocking this web

...

Resolved! Query on URL filtering

Hello,

 

We are using this Security Policy:

Source->Inside, User->any, Destination->any, Application->any, Service/URL category->any, Action->allow.

We are using Group Profile under Profile Setting with a URL Filtering Profile 'test-URL'.

In this URL Filt

...

Farzana by L4 Transporter
  • 3247 Views
  • 2 replies
  • 0 Likes

QoS statistics Graphic monitoring Issue

Hello,

 

Using PAN-OS 6.1.17.

 

At first, Bandwidth graph was not showing in both Chrome and IE. The only change I made was adding all the classes into the QOS profile. The classes that were in use by QOS were already showing up in the other statistics t

...

Farzana by L4 Transporter
  • 3582 Views
  • 4 replies
  • 0 Likes

When are we getting a GlobalProtect Client for Linux

Hey guys,

 

I already know how to get my Linux clients (Ubuntu) to connect via xAuth, and it works great. However, I've been tasked with implementing MFA to the VPN infrastructure. Works fine for the Windows/Mac clients using the GlobalProtect Client.

...

Resolved! Failover methods Manual vs Link Down (traffic loss)

There are few triggers that could cause a failover in HA cluster.

I'm interested to understand the difference between manual (graceful) and a hard failover like Link Down. 

In a matter of network traffic loss, is there a difference between Link monitor

...

Trustnet by L1 Bithead
  • 8823 Views
  • 10 replies
  • 1 Likes
  • 24087 Posts
  • 116 Subscriptions
Labels