General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 442 Views
  • 0 replies
  • 2 Likes

Resolved! Global Protect some questions

Hi

 

I have PA-3050 Cluster and will configure SSL-VPN for remote users "without licenses installed", so I have a couple of questions on Global Protect;

 

1- How many users can connect through SSL-VPN on this device?

 

2- Can we connect SSL-VPN over mobile

...

myasin by L2 Linker
  • 2691 Views
  • 4 replies
  • 0 Likes

Generate an e-mail alert from a DENY policy

Hi

Just a quick question, one of my policies on my PA5020 is a "Deny_Any" policy whereby if no application matches the policy base then it gets denied. The only time I see this is when I view the monitor | logs | traffic.

 

Is there any way I could get

...

JulianH by L1 Bithead
  • 2652 Views
  • 3 replies
  • 0 Likes

LDAPS inexplicably working on 2 DCs, not on 3rd

Please suggest a better title, this issue has sent me through the ringer.

 

We have a site with an MPLS connection down.  The PAs use the domain controller in our datacenter for authentication for both admin, and GP users, which is over the MPLS.  LDAP

...

Resolved! Netflow not working

Hello,

 

In the Traffic monitor logs, nothing is showing up for netflow.

Using PAN-OS 7.0.4.

Tried using port 2055 and 9996.

Tried to use default and MGT interface of Netflow and SNMP Trap under Device>Setup>Services>Service Route Configuration.

 

We have s

...

Farzana by L4 Transporter
  • 4348 Views
  • 1 replies
  • 0 Likes

How to SSL Bypass based on application

Hello,

 

I wanted to share a solution I have implemented recntly.

 

Bypassing SSL Decryption based on applications was a request I had from many customers.

I know there is an FR for that. but until then, with PAN-OS 8, it is possible to achieve differentl

...

tag.png
dynamic address group.png
bypass rule.png
log forwarding.png
Ozamir by L2 Linker
  • 7043 Views
  • 2 replies
  • 8 Likes

ERR_SSL_PROTOCOL_ERROR GlobalProtect

Hi All,

 

When I try to open the URL of our portal I get the following error in Chrome:

 

Chrome: ERR_SSL_PROTOCOL_ERROR

Firefox: SSL_ERROR_HANDSHAKE_FAILURE_ALERT 

 

I also imported the wildcard certificate to 'Personal' and 'Trusted Root CA.'

 

Logs:

 

PanGP

...

DocEmre by L0 Member
  • 6374 Views
  • 4 replies
  • 0 Likes

Single Pass Parallel Processing SP3

Hi All,

 

Please can someone explain me the concept of SP3 in simple terms as i dont find any good resource to understand this.

I understand that passing the traffic through different devices will impact throughput and add latency,but how does PA works

...

mahmoodm by L3 Networker
  • 13371 Views
  • 11 replies
  • 0 Likes

Panoram and Clusters

HI

 

Sort of asked this before, but with a couple more months of experienace, I am back again

 

So I have a cluster I want to manage with panorama

 

Object and polices work great... templates not so good.

 

So I have a cluster setup for Global protect, but I

...

Resolved! Suggestions for Splunk Search/Report

We have the Palo Alto app for Splunk logging everything correctly, I'm basically looking for suggestions on solid search reports to eliminate most of the noise.  I've been combing through some of the Splunk forum posts but nothing jumping out at me s

...

Resolved! Running MineMeld on VMWare desktop

I have set up the trusty server and the minemeld iso however I am unable to login to the ubuntu shell with the provided default username and password.

any thoughts?

haigroup by L1 Bithead
  • 21049 Views
  • 12 replies
  • 0 Likes

Resolved! Logcard Interface shows unk/unk/down(disabled)

Has anyone out there experienced this?

 

                  name             id speed/duplex/state                             mac address
                  --------------------------------------------------------------------------------
                 

...

Resolved! File Blocking process

How does Palo Alto identify files, such as ".exe" when we have a rule set to block the download?  What is the process that Palo Alto uses?

  • 23701 Posts
  • 110 Subscriptions
Top Solution Authors
Labels