General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

What priviledge need user-id agent user to work with WMI?

Hello,

We need to know the priviledge minimum to the user-id user to work with the WMI probes and it can't look the security log of DC.

The problem is that on the security log appears one user of application siteadvisor that is installed on every PC of

...

jvmartin by Not applicable
  • 3650 Views
  • 5 replies
  • 0 Likes

Resolved! Global Protect some questions

Hi

 

I have PA-3050 Cluster and will configure SSL-VPN for remote users "without licenses installed", so I have a couple of questions on Global Protect;

 

1- How many users can connect through SSL-VPN on this device?

 

2- Can we connect SSL-VPN over mobile

...

myasin by L2 Linker
  • 2557 Views
  • 4 replies
  • 0 Likes

Generate an e-mail alert from a DENY policy

Hi

Just a quick question, one of my policies on my PA5020 is a "Deny_Any" policy whereby if no application matches the policy base then it gets denied. The only time I see this is when I view the monitor | logs | traffic.

 

Is there any way I could get

...

JulianH by L1 Bithead
  • 2525 Views
  • 3 replies
  • 0 Likes

LDAPS inexplicably working on 2 DCs, not on 3rd

Please suggest a better title, this issue has sent me through the ringer.

 

We have a site with an MPLS connection down.  The PAs use the domain controller in our datacenter for authentication for both admin, and GP users, which is over the MPLS.  LDAP

...

Resolved! Netflow not working

Hello,

 

In the Traffic monitor logs, nothing is showing up for netflow.

Using PAN-OS 7.0.4.

Tried using port 2055 and 9996.

Tried to use default and MGT interface of Netflow and SNMP Trap under Device>Setup>Services>Service Route Configuration.

 

We have s

...

Farzana by L4 Transporter
  • 4218 Views
  • 1 replies
  • 0 Likes

How to SSL Bypass based on application

Hello,

 

I wanted to share a solution I have implemented recntly.

 

Bypassing SSL Decryption based on applications was a request I had from many customers.

I know there is an FR for that. but until then, with PAN-OS 8, it is possible to achieve differentl

...

tag.png
dynamic address group.png
bypass rule.png
log forwarding.png
Ozamir by L2 Linker
  • 6555 Views
  • 2 replies
  • 8 Likes

ERR_SSL_PROTOCOL_ERROR GlobalProtect

Hi All,

 

When I try to open the URL of our portal I get the following error in Chrome:

 

Chrome: ERR_SSL_PROTOCOL_ERROR

Firefox: SSL_ERROR_HANDSHAKE_FAILURE_ALERT 

 

I also imported the wildcard certificate to 'Personal' and 'Trusted Root CA.'

 

Logs:

 

PanGP

...

DocEmre by L0 Member
  • 5986 Views
  • 4 replies
  • 0 Likes

Single Pass Parallel Processing SP3

Hi All,

 

Please can someone explain me the concept of SP3 in simple terms as i dont find any good resource to understand this.

I understand that passing the traffic through different devices will impact throughput and add latency,but how does PA works

...

mahmoodm by L3 Networker
  • 11946 Views
  • 11 replies
  • 0 Likes

Panoram and Clusters

HI

 

Sort of asked this before, but with a couple more months of experienace, I am back again

 

So I have a cluster I want to manage with panorama

 

Object and polices work great... templates not so good.

 

So I have a cluster setup for Global protect, but I

...

Resolved! Suggestions for Splunk Search/Report

We have the Palo Alto app for Splunk logging everything correctly, I'm basically looking for suggestions on solid search reports to eliminate most of the noise.  I've been combing through some of the Splunk forum posts but nothing jumping out at me s

...

Resolved! Running MineMeld on VMWare desktop

I have set up the trusty server and the minemeld iso however I am unable to login to the ubuntu shell with the provided default username and password.

any thoughts?

haigroup by L1 Bithead
  • 20647 Views
  • 12 replies
  • 0 Likes
  • 23716 Posts
  • 104 Subscriptions
Top Solution Authors
Top Liked Authors
Labels