General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 275 Views
  • 0 replies
  • 1 Likes

Resolved! Proxy-ID Error message for GlobalProtect Client

We have configured a GlobalProtect Gateway to service clients using both the GP Agent and X-Auth parameters with 3rd Party Clients.

 

We have been receiving the following error messages:

'IKE phase-2 negotiation failed when processing proxy ID. cannot f

...

Suspicious login attempt found on PA.

Hi All,

I have a situation where someone tried to access Palo Alto and failed to login as the authentication was not granted. Any idea where i can go and see what was the source IP and location etc. A bit of forensics.

 

Any suggestions most welcome.

 

Im

...

installing SFP modules on PA-5050

Hi I need to know the correct procedure for installing a 10 G SFP into a PA-5050. 

 

Can I install while they are on and running? Do I need a reboot?

Do I have to power off and install and power on?

 

I’ve tried to if an answer in the documentation

fribbl3 by L0 Member
  • 2871 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect behind NAT/PAT Cetificate Issue.

Hi,

 

I'm configuring my GlobalProtect VPN and Agent keep saying "CN name mismatch".

 

Here's my infrastructure : 

The PA220 is behind the NAT of the ISP and all connexions on WAN_IP (that is the public IP) are translated to the address 192.168.7.1. As po

...

Drawing1.png
Naelwan by L1 Bithead
  • 3954 Views
  • 3 replies
  • 0 Likes

Resolved! Question on GlobalProtect access route

Hi All,

 

I've successfully set up globalprotect for my remote users according to this link https://live.paloaltonetworks.com/t5/Configuration-Articles/Basic-GlobalProtect-Configuration-with-User-logon/ta-p/136099

 

I have a new problem. I want some user

...

Resolved! How many classified website on PAN-DB?

Hi There,

 

I have a customer RFP requiring that URL filtering product must have more that 50 million clissified webiste on its database. 

 

Does Palo Alto Networks URL Filtering solution (PAN-DB) have more than 50 Million classified webistes?

 

Thanks ver

...

cvieria by L2 Linker
  • 2494 Views
  • 1 replies
  • 0 Likes

Panorama Merge or migration

Hello,

 

I do have 2 Panorama running with 7.1.9. 1 running with M100 physical and another one is VM. Both are having different device group , templete and devices.

 

I am looking for way to migrate all devices from M100 to VM. Is there any easiest/ safe

...

Resolved! syslog alerting in PAN-OS

There is an option for syslog alerting by email in PAN-OS , but even if used only for threats , not traffic, results in way too many emails. I am collecting threat events through Logstash into time series database InfluxDB . My very small program is

...

niuk by L3 Networker
  • 3505 Views
  • 3 replies
  • 0 Likes

Multiple LDAP servers in a single profile - behavior

Dear comm,

 

when I have several LDAP servers in a profile for user authentication. How is this list utilized? Is only the first entry used? Are authentication requests distributed over all configured servers? How does it work?

 

Kind regards,

 

Rene

 

 

Rboehme by L2 Linker
  • 4082 Views
  • 3 replies
  • 0 Likes

syslog miner - please check rule syntax

Hi,

 

I just cloned a syslog miner, following the guide here:

 

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-the-syslog-Miner/ta-p/77262

 

I can see the syslog processed counter moving, so looks like syslog forwarding is working.  I'm

...

TI automation - architecture and hardening [part 1]

Hi everyone,

I'm Giovanni Mellini and I work in ENAV (Italian Air Traffic Control provider) Security dept.

 

One of the topics I've been working on over the last few months is threat intelligence‍ automation, or how to automatically integrate threat

...

soc_enav by L1 Bithead
  • 16832 Views
  • 8 replies
  • 3 Likes
  • 23639 Posts
  • 107 Subscriptions
Top Liked Authors
Labels