General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 446 Views
  • 0 replies
  • 2 Likes

Setting up a L2TP/IPsec VPN

Hi All,

 

Im trying to setup a L2TP/IPsec VPN behind our PA FW, using RRAS.

I have allowed application ipsec and i can see that port 500 and 4500 are being allowed when i attempt to connect.

I have also set up NAT rules for ports 500,4500,1701 from untru

...

How to Troubleshoot LDAP Authentication in PanOS 5

I keep going through the steps for LDAP auth for admin access and keep getting this generic invalid username and password. I can browse the group mapping tree so I know the communication is there, I have verified my security group is in the allow lis

...

Resolved! Suppress discovery notifications in Windows10

Hi, I'm an IT for a enterprise company and one of my users are tired of getting discovery notifications from the Palo Alto client. Basic windows blocking don't work and I found this site from Palo Alto that is 404. https://www.paloaltonetworks.com/do

...

p4lm4r by L0 Member
  • 1567 Views
  • 1 replies
  • 0 Likes

Resolved! How to setup IPSEC VPN tunnel between PA-3020 with PA-200

I would like to know if there is a way we can setup two PA to talk over VPN for eg:

1- PA-3020 at HQ .

2 - PA-200 in our branch office.

I would like my PA-200 to connect with PA-3020 over IPsec VPN and at our branch office we have DSL connection. If som

...

RonaldB by Not applicable
  • 3517 Views
  • 4 replies
  • 0 Likes

Resolved! Problem with Group Mapping Settings

Hello

i get this message when i try to add Active directory user "Error: Failed to connect to 172.16.17.5(172.16.17.5):389"

i already enter the ldap information on the ldap profil

ldap.jpg
user ldap.jpg

Receive an email when an HIP rules not match

Hello,

 

I m going to enable HIP on our global protect so i m testing it and it works very well but i can t find how i can receive an email when a hip profile is not match. I have enabled the log transfer in device -> log settings. So i receive emai  e

...

vbe by L0 Member
  • 1961 Views
  • 2 replies
  • 0 Likes

Internet via Mgmt interface

How do you configure the management port to access internet? I have set with default gateway but do I need to had a route to 0.0.0.0 ?  I only have the mgmt port connected at this time. 

Resolved! GlobalProtect not using AD group

Hi,

 

I am running a PA-VM on AWS. It has two interfaces, one for management, one for data.

I have created an LDAP connection to our network and can log into GP using my AD credentials. So far, so good.

 

I need to have separation of users and assigned IP

...

Connect Linux Machine to GlobalProtect

Hi,

 

This is my first post, so please bear with me if this is the wrong forum of if this has been answered somewhere before..

 

I am having issues connecting a Linux client to Globalprotect. I have tried to follow the following:

https://live.paloaltonetw

...

Device block on MAC without Global Protect

Hi, Would anybody know if there is a way to block devices on a LAN (without Global Protect)?  I know reservations and static IP's can be assigned but asking the question to see if it's a possibility.

 

Many thanks

 

Will

CDS_Will by L0 Member
  • 1657 Views
  • 2 replies
  • 0 Likes

Traffic Flow in SSL VPN

Hi All,

 

Please can someone explain me the traffic flow in SSL VPN as am a bit confuse about it.

 

I might come up with more questions once this discussion starts.

 

Thanks

mahmoodm by L3 Networker
  • 2468 Views
  • 3 replies
  • 0 Likes

What priviledge need user-id agent user to work with WMI?

Hello,

We need to know the priviledge minimum to the user-id user to work with the WMI probes and it can't look the security log of DC.

The problem is that on the security log appears one user of application siteadvisor that is installed on every PC of

...

jvmartin by Not applicable
  • 3753 Views
  • 5 replies
  • 0 Likes
  • 23703 Posts
  • 110 Subscriptions
Top Solution Authors
Labels