General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 238 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3551 Views
  • 2 replies
  • 14 Likes

Resolved! Security polices and nat and cluster

Hi

 

So I have a active / active cluster, but I am not sync my VR config.  I am connected to an OSPF network

 

 

lets say my internal network is

OSPF int ae1.19 192.168.19.0/24

loopback.1 192.168.255.25/32 and 192.168.255.26/32 - ospf routerid (one for each

...

DSRI on IPSec/VPN traffic

We have a rule allowing VPN traffic (IPSec) from our Guest environment. This traffic is non-decryptable. We would like to reduce CPU by disabling Server Response Inspection for this traffic? Do we lose anything from a security perspective if we do so

...

Port Forwarding Problem

This should be fairly simple but am at wits end.  

 

I need to forward 2 ports from an external IP to an internal private ip (Ports 8088 and 22).  I found this article and am following its example:  https://nubisnovem.com/pinning-a-hole-in-palo-alto/

 

 

...

PA2.PNG
PA1.PNG
RJSCSLLC by L1 Bithead
  • 4671 Views
  • 6 replies
  • 0 Likes

Auto reconnect Global Protect

Hello Everyone

 

There are some branch offices which have slow internet connection.Sometimes because of no internet connection for 5-10 seconds Global protect disconnect.Is there any option to automatically reconnect global protect?

Radmin_85 by L4 Transporter
  • 5986 Views
  • 3 replies
  • 0 Likes

Resolved! How to configure LDAP profile in multi-domain forest

Background:

-We have two domains, let's say domainA.local and domainB.local.

-Two domains are trusted each other.

-domainA is for parent company, domainB is for child company.

 

What I want to do:

-I want to bind to domainB.local by using user under domain

...

WS000002.png
emr_1 by L5 Sessionator
  • 2834 Views
  • 1 replies
  • 0 Likes

Brute force attack

The PA showed one of the pc's on my network was the source of brute force attack to the Netherlands so I blocked it. Anyone have any ideas what needs to be done to remediate the issues on the PC?

jdprovine by L4 Transporter
  • 2935 Views
  • 9 replies
  • 0 Likes

Resolved! Master Key extending time issue

Hi All Experts,

 

I am currently having an issue while attempting to extend a Master Key validity time:

 

 

2017-07-21 00:08:20.473 +0100 ------------ Received event:3 (Cfg installed) in worker thread ------------
2017-07-21 00:08:20.475 +0100 [3] Reading
...

master key.JPG

Flags in Syslog

Hi all

 

Paloalto is able to forward logs to a syslog server. So far so good. In these logs there is a hex-value which indicates what was done with this session.

In the documentation ( https://www.paloaltonetworks.com/documentation/80/pan-os/pan-os/moni

...

Remo by L7 Applicator
  • 2234 Views
  • 0 replies
  • 0 Likes

EDL for Office 365 DoD Tenant

I installed Minemeld and found the office365-config.yml file to import in order to build my External Dynamic Lists. Unfortunately, we are not using the commercial tenant for O365, so I'm wondering if anybody knows of a different file that you can dow

...

  • 24169 Posts
  • 100 Subscriptions
Labels